CVE-2026-30903

External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an unauthenticated user to conduct an escalation of privilege via network access...

Zoom Workplace VDI Client < 6.4.17 Vulnerability (ZSB-26005)

The version of Zoom Workplace VDI Client installed on the remote host is prior to 6.4.17. It is, therefore, affected by a vulnerability as referenced in the ZSB-26005 advisory. - External Control of File Name or Path in the Mail feature of Zoom Workplace for Windows before 6.6.0 may allow an...

Microsoft Windows Mail HTML Line Breaking Out-Of-Bounds Read Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Microsoft Windows. Authentication is not required to exploit this vulnerability. The specific flaw exists within the logic that implements automatic line breaks when displaying HTML content in the...

CVE-2018-8305

An information disclosure vulnerability exists in Windows Mail Client when a message is opened, aka "Windows Mail Client Information Disclosure Vulnerability." This affects Mail, Calendar, and People in Windows 8.1 App Store...

CVE-2018-8305

CVE-2018-8305 affects Windows Mail Client components (Mail, Calendar, and People) on Windows 8.1 App Store. The vulnerability is information disclosure that occurs when a user opens a crafted message; an attacker can trigger the client to disclose sensitive information to a malicious site/remote ...

Microsoft Windows Mail Client Information Disclosure Vulnerability

Microsoft Mail, Calendar, and People are all products of Microsoft Corporation.Microsoft Mail is an e-mail application.Calendar is a calendar application.People is a contact information management application.Windows Mail Windows Mail is an e-mail client. An information disclosure vulnerability...

Windows Mail Client Information Disclosure Vulnerability

An information disclosure vulnerability exists in Windows Mail Client when a message is opened. This vulnerability could potentially result in the disclosure of sensitive information to a malicious site. To exploit the vulnerability, an attacker would have to send a malicious email to a user and...

MS10-030: Vulnerability in Outlook Express and Windows Mail could allow remote code execution

MS10-030: Vulnerability in Outlook Express and Windows Mail could allow remote code execution Support for Windows Vista Service Pack 1 SP1 ends on July 12, 2011. To continue receiving security updates for Windows, make sure you're running Windows Vista with Service Pack 2 SP2. For more informatio...

MailEnable Local Privilege Escalation

Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MAILENABLE-MULTIPLE-PRIVILEGE-ESCALATIONS.txt + ISR: ApparitionSec Vendor: =================== www.mailenable.com Products: ============ MailEnable MailEnable provides Windows...

MailEnable Multiple Local Privilege Escalations Vulnerability

Exploit for windows platform in category local exploits + Credits: John Page AKA hyp3rlinx + Website: hyp3rlinx.altervista.org + Source: http://hyp3rlinx.altervista.org/advisories/MAILENABLE-MULTIPLE-PRIVILEGE-ESCALATIONS.txt + ISR: ApparitionSec Vendor: =================== www.mailenable.com...

netfaqs.com XSS vulnerability

Vulnerable URL: http://www.netfaqs.com/windows/Mail/Netscape/4/index.asp?bisp=" Details: Description| Value ---|--- Patched:| No Latest check for patch:| 26.07.2017 Vulnerability type:| XSS Vulnerability status:| Publicly disclosed Alexa Rank| 3057277 Google Pagerank| 3 VIP website status:| No...

Beginner&#39;s error: import function of Windows Mail executes rogue program C:&#92;Program.exe with credentials of other account

Hi @ll, the import function of Windows Mail executes a rogue program C:Program.exe with the credentials of another account, resulting in a privilege escalation! 1. Fetch http://home.arcor.de/skanthak/download/SENTINEL.EXE and save it as C:Program.exe 2. Start Windows Mail part of Windows Vista an...

Windows Mail privilege escalation

Insufficient path on executable call...

Windows Mail Rogue Program.exe Execution

Hi @ll, the import function of Windows Mail executes a rogue program C:\Program.exe with the credentials of another account, resulting in a privilege escalation! 1. Fetch and save it as C:\Program.exe 2. Start Windows Mail part of Windows Vista and Windows Server 2008 3. On the File menu, click...

Microsoft Windows Vista Windows Mail Local File Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/23103/info Microsoft Windows Vista Windows Mail is prone to a local file-execution vulnerability due to a design error. An attackers may exploit this issue to execute local files. The attacker must entice a victim into...

Outlook Express 5.5/6.0,Windows Mail MHTML URI Handler Information Disclosure Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/17717/info Outlook Express and Windows Mail are prone to a cross-domain information-disclosure vulnerability. This vulnerability may let a malicious website access properties of a site in an arbitrary external domain in t...

Windows Mail/Meeting Space不安全库加载漏洞(MS11-085)

CVE ID: CVE-2011-2016 Microsoft Windows是流行的计算机操作系统。 Microsoft Windows在实现上存在安全漏洞，可被恶意用户利用控制受影响系统。 此漏洞源于Windows Mail和Windows Meeting Space以不安全方式加载某些库，通过诱使用户打开远程WebDAV或SMB共享上的EML或WCLNV文件加载任意库。 0 Microsoft Windows Vista Microsoft Windows Server 2008 Microsoft Windows 7 厂商补丁： Microsoft ---------...

Windows Mail and Windows Meeting Space Remote Code Execution Vulnerability (2620704)

This host is missing an important security update according to Microsoft Bulletin MS11-085. OpenVAS Vulnerability Test $Id: secpodms11-085.nasl 5362 2017-02-20 12:46:39Z cfi $ Windows Mail and Windows Meeting Space Remote Code Execution Vulnerability 2620704 Authors: Antu Sanadi Copyright:...

CVE-2011-2016

Untrusted search path vulnerability in Windows Mail and Windows Meeting Space in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a...

CVE-2011-2016

Untrusted search path vulnerability in Windows Mail and Windows Meeting Space in Microsoft Windows Vista SP2, Windows Server 2008 SP2, R2, and R2 SP1, and Windows 7 Gold and SP1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a...