EUVD-2001-0192

Malware in sbrugna...

EUVD-2000-0827

Malware in sbrugna...

EUVD-2000-0828

Malware in sbrugna...

SUSE CVE-2005-2943

Stack-based buffer overflow in sendmail in XMail before 1.22 allows remote attackers to execute arbitrary code via a long -t command line option...

CVE-2005-4784

Multiple buffer overflows in the POSIX readdirr function, as used in multiple packages, allow local users to cause a denial of service and possibly execute arbitrary code via 1 a symlink attack that exploits a race condition between opendir and pathcon calls and changes the filesystem to one with...

Xmail 0.5/0.6 CTRLServer Remote Arbitrary Commands Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/2360/info Versions of CTRLServer are vulnerable to malicious user-supplied input. A failure to properly bounds-check data passed to the cfgfileget command leads to an overflow, which, properly exploited, can result in...

XMail Insecure Temporary File Creation Vulnerability

XMail creates temporary files in an insecure manner. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

XMail Insecure Temporary File Creation Vulnerability

XMail creates temporary files in an insecure manner. An attacker with local access could potentially exploit this issue to perform symbolic-link attacks, overwriting arbitrary files in the context of the affected application. Successfully mounting a symlink attack may allow the attacker to delete...

XMail < 1.27 Insecure Temporary File Creation

According to its SMTP service banner, the version of XMail running on the remote host creates temporary files insecurely. A local attacker could exploit this to overwrite arbitrary files by using symlink attacks, which could lead to privilege escalation. C Tenable Network Security, Inc...

XMail < 1.27 Insecure Temporary File Creation

Binary data 5347.prm...

Gentoo Security Advisory GLSA 200512-05 (xmail)

The remote host is missing updates announced in advisory GLSA 200512-05. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200512-05 (xmail)

The remote host is missing updates announced in advisory GLSA 200512-05. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian Security Advisory DSA 902-1 (xmail)

The remote host is missing an update to xmail announced via advisory DSA 902-1. A buffer overflow has been discovered in the sendmail program of xmail, an advanced, fast and reliable ESMTP/POP3 mail server that could lead to the execution of arbitrary code with group mail privileges. The old stab...

Debian: Security Advisory (DSA-902-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

XMail 1.21 (-t Command Line Option) Local Root Buffer Overflow Exploit

No description provided by source. / XMail 1.21 'sendmail' local exploit ret-into-libc Yields uid root || gid mail By qaaz at centrum dot cz, 2005 / include stdio.h include stdlib.h include unistd.h include string.h include signal.h include sys/types.h include sys/wait.h include sys/select.h defi...

Debian DSA-902-1 : xmail - buffer overflow

A buffer overflow has been discovered in the sendmail program of xmail, an advanced, fast and reliable ESMTP/POP3 mail server that could lead to the execution of arbitrary code with group mail privileges. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks...

CVE-2005-4784

Multiple buffer overflows in the POSIX readdirr function, as used in multiple packages, allow local users to cause a denial of service and possibly execute arbitrary code via 1 a symlink attack that exploits a race condition between opendir and pathcon calls and changes the filesystem to one with...

GLSA-200512-05 : Xmail: Privilege escalation through sendmail

The remote host is affected by the vulnerability described in GLSA-200512-05 Xmail: Privilege escalation through sendmail iDEFENSE reported that the AddressFromAtPtr function in the sendmail program fails to check bounds on arguments passed from other functions, and as a result an exploitable sta...

Xmail: Privilege escalation through sendmail

Background Xmail is an Internet and intranet mail server. Description iDEFENSE reported that the AddressFromAtPtr function in the sendmail program fails to check bounds on arguments passed from other functions, and as a result an exploitable stack overflow condition occurs when specifying the "-t...

[SECURITY] [DSA 902-1] New xmail packages fix arbitrary code execution

-------------------------------------------------------------------------- Debian Security Advisory DSA 902-1 [email protected] http://www.debian.org/security/ Martin Schulze November 21st, 2005 http://www.debian.org/security/faq -...