84 matches found
EUVD-2000-0579
Malware in sbrugna...
EUVD-2000-0090
Malware in sbrugna...
EUVD-2006-2347
Malware in sbrugna...
EUVD-2004-2231
Malware in sbrugna...
EUVD-2001-0972
Malware in sbrugna...
SUSE CVE-2006-2447
SpamAssassin before 3.1.3, when running with vpopmail and the paranoid -P switch, allows remote attackers to execute arbitrary commands via a crafted message that is not properly handled when invoking spamd with the virtual pop username...
SUSE CVE-2007-2873
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service corrupt arbitrary files via a symlink attack on a file that is used by spamd...
VPOPMail 0.9x vpopmail.php Remote Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/7063/info A vulnerability has been reported for VPOPMail that may allow attackers to execute arbitrary commands on a vulnerable system. The vulnerability exists due to insufficient sanitization of user-supplied input. As...
Inter7 vpopmail (vchkpw) <= 3.4.11 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/942/info Vpopmail vchkpw is free GPL software package built to help manage virtual domains and non /etc/passwd email accounts on Qmail mail servers. This package is developed by Inter7 Referenced in the 'Credit' section a...
SpamAssassin spamd Remote Command Execution
No description provided by source. $Id: spamassassinexec.rb 9179 2010-04-30 08:40:19Z jduck $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of...
SpamAssassin Spamd Configurable Options Code Execution (CVE-2006-2447)
SpamAssassin is a mail filter which attempts to identify spam using a variety of mechanisms, including text analysis, DNS blocklists, and collaborative filtering databases. The product is also embedded in numerous commercial anti-spam products offered by a broad range of vendors. There are numero...
SpamAssassin spamd Remote Command Execution
$Id$ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 'SpamAssassin...
Vpopmail/QmailAdmin User's Quota Multiple Integer Overflows
Author: Jacobo Avariento Gimeno Sofistic S.L. Contact: jacobo at sofistic.net Release Date: May 8, 2009 CVE/bugtraq id: Not assigned yet Severity: Low/Medium Vendor's Description of Software: ------------------------------------------------------------------------------------- „Vpopmail is a free...
Gentoo Security Advisory GLSA 200409-01 (vpopmail)
The remote host is missing updates announced in advisory GLSA 200409-01. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...
Gentoo Security Advisory GLSA 200409-01 (vpopmail)
The remote host is missing updates announced in advisory GLSA 200409-01. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian Security Advisory DSA 1090-1 (spamassassin)
The remote host is missing an update to spamassassin announced via advisory DSA 1090-1. A vulnerability has been discoverd in SpamAssassin, a Perl-based spam filter using text analysis, that can allow remote attackers to execute arbitrary commands. This problem only affects systems where spamd is...
openSUSE 10 Security Update : spamassassin (spamassassin-1904)
This update fixes the following security problem in SpamAssassin : - CVE-2006-2447: SpamAssassin when running with vpopmail and the paranoid -P switch, allows remote attackers to execute arbitrary commands via a crafted message that is not properly handled when invoking spamd with the virtual pop...
spamassassin symlink attack
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service corrupt arbitrary files via a symlink attack on a file that is used by spamd...
CVE-2007-2873
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service corrupt arbitrary files via a symlink attack on a file that is used by spamd...
DEBIAN-CVE-2007-2873
SpamAssassin 3.1.x, 3.2.0, and 3.2.1 before 20070611, when running as root in unusual configurations using vpopmail or virtual users, allows local users to cause a denial of service corrupt arbitrary files via a symlink attack on a file that is used by spamd...