10 matches found
EUVD-2006-2347
Malware in sbrugna...
CVE-2004-2238
Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability...
CVE-2004-2239
Buffer overflow in vsybase.c in vpopmail 5.4.2 and earlier might allow attackers to cause a denial of service or execute arbitrary code...
advisory
.:: Security Advisory ::. by unl0ck team http://web-hack.ru/unl0ck | | | |/ | | || |/| || | | | || | | | | | | | | Advisory: 2 by unl0ck team Bug: format string and buffer overflow sybase Product: vpopmail = 5.4.2 sybase vulnerability Author: Werro [email protected] Realease Date : 12/08/04 Risk: Low...
VPOPMail 0.9x - vpopmail.php Remote Command Execution
VPOPMail 0.9x - vpopmail.php Remote Command Execution source: https://www.securityfocus.com/bid/7063/info A vulnerability has been reported for VPOPMail that may allow attackers to execute arbitrary commands on a vulnerable system. The vulnerability exists due to insufficient sanitization of...
VPOPMail 0.9x - 'vpopmail.php' Remote Command Execution
source: https://www.securityfocus.com/bid/7063/info A vulnerability has been reported for VPOPMail that may allow attackers to execute arbitrary commands on a vulnerable system. The vulnerability exists due to insufficient sanitization of user-supplied input. As the vpopmail.php script does not...
CVE-2000-0583
vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directives...
vpopmail-3.4.11 problems
The vpopmail package is an extension for Qmail that allows easy management of virtual domains and can use a SQL backend for storing user accounts. The program vchkpw in that package contains a vulnerability in its logging routines. The vchkpw program handles the username/password/domain...
PT-2000-1517 · Vpopmail · Vpopmail
Name of the Vulnerable Software and Affected Versions: vpopmail versions prior to 4.8 Description: The issue is related to the vchkpw program in vpopmail, which does not properly cleanse an untrusted format string used in a call to syslog. This allows remote attackers to cause a denial of service...
Inter7 vpopmail (vchkpw) 3.4.11 - Local Buffer Overflow
Inter7 vpopmail vchkpw 3.4.11 - Local Buffer Overflow // source: https://www.securityfocus.com/bid/942/info Vpopmail vchkpw is free GPL software package built to help manage virtual domains and non /etc/passwd email accounts on Qmail mail servers. This package is developed by Inter7 Referenced in...