6 matches found
CVE-2015-5382
program/steps/addressbook/photo.inc in Roundcube Webmail before 1.0.6 and 1.1.x before 1.1.2 allows remote authenticated users to read arbitrary files via the alt parameter when uploading a vCard...
THN Weekly Roundup — 15 Most Popular Cyber Security and Hacking News Stories
We are once again here with our weekly round up based on last week’s top cyber security threats and challenges. I recommend you to read the entire thing just click ‘Read More’ because there’s some valuable advice in there as well. Here’s the list: 1. Reminder! If You have not yet, Turn Off Window...
CVE-2004-1828
Vcard 2.9 and possibly other versions does not require authorization to run uninstall.php, which could allow remote attackers to uninstall Vcard and delete database tables via a direct request to uninstall.php...
Security Bulletin MS01-012
---------------------------------------------------------------------- Title: Outlook, Outlook Express Vcard Handler Contains Unchecked Buffer Date: 22 February 2001 Software: Outlook, Outlook Express Impact: Run code of attacker's choice Bulletin: MS01-012 Microsoft encourages customers to...
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard .vcf files, which allows attackers to cause a denial of service...
vCard DoS on Outlook 2000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vulnerability in vCard import in Outlook 2000 Released: August 30, 2000 Summary ======= Under certain conditions, excessively long or malformed fields in a vCard .vcf file can cause Microsoft Outlook 2000 to either overflow or excessively utilize syst...