7 matches found
EUVD-2020-21332
Malware in sbrugna...
CVE-2020-28944
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...
CVE-2020-28944
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...
Code injection
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...
CVE-2020-28944
OX Guard 2.10.4 and earlier allows a Denial of Service via a WKS server that responds slowly or with a large amount of data...
Open-Xchange: Guard WKS lookup: Evil WKS server forces connections to last forever
Any logged-in user can cause denial of service against the AppSuite server by asking Guard to fetch keys from a badly-behaving WKS server. This WKS server's response never ends, tying up a java process and TLS connection forever. Any logged-in user can cause denial of service against the AppSuite...
Open-Xchange: SSRF - Guard - Unchecked WKS servers
Note This is different vulnerability than HKP lookup 792953, although it does basically same thing and has same problem, these are independent implementations of key lookup and the vulnerable code isn't shared. Description When encrypting an email, one of strategies to lookup recipient's encrypti...