Searching mime software vulnerabilities

Buffer overflow in CDE mailtool allows local us

Content-Type | privileges | mailtool | overflow | allows | Buffer | users | local | MIME | long | root | gain | CDE | via |

Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.


UnityMail allows remote attackers to conduct a

attackers | UnityMail | conduct | headers | service | number | remote | allows | denial | large | MIME | via |

UnityMail allows remote attackers to conduct a denial of service via a large number of MIME headers.


Apache allows remote attackers to conduct a den

attackers | conduct | service | headers | number | denial | allows | Apache | remote | large | MIME | via |

Apache allows remote attackers to conduct a denial of service via a large number of MIME headers.


Buffer overflow in phf CGI program allows remot

specifying | arbitrary | attackers | arguments | including | commands | overflow | execute | program | number | allows | Buffer | header | remote | large | long | MIME | CGI | phf |

Buffer overflow in phf CGI program allows remote attackers to execute arbitrary commands by specifying a large number of arguments and including a long MIME header.


The rendering engine in Internet Explorer deter

independently | automatically | determines | scripting | specified | rendering | normally | Explorer | Internet | servers | support | execute | server | script | placed | remote | allows | engine | whose | which | MIME | text | such | does | file | type | not |

The rendering engine in Internet Explorer determines the MIME type independently of the type that is specified by the server, which allows remote servers to automatically execute script which is placed in a file whose MIME type does not normally support scripting, such as text (.txt), JPEG (.jpg), etc.


Evolution 1.0.3 and 1.0.4 allows remote attacke

Evolution |

Evolution 1.0.3 and 1.0.4 allows remote attackers to cause a denial of service (memory consumption and crash) via an email with a malformed MIME header.


The Email Sanitizer before 1.133 for Procmail a

Sanitizer | before | Email |

The Email Sanitizer before 1.133 for Procmail allows remote attackers to bypass the mail filter and execute arbitrary code via crafted recursive multipart MIME attachments.


The handle_image function in mail-format.c for

mail-formatc | handle_image | Evolution | function | Ximian | Agent | User | Mail |

The handle_image function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image.


run-mailcap in mime-support 3.22 and earlier al

mime-support | run-mailcap |

run-mailcap in mime-support 3.22 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary files.


Multiple vulnerabilities in multiple vendor imp

Secure/Multipurpose | implementations | vulnerabilities | Extensions | Internet | Multiple | vendor | Mail |

Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite.


Buffer overflow in PINE before 4.58 allows remo

overflow | before | Buffer | PINE |

Buffer overflow in PINE before 4.58 allows remote attackers to execute arbitrary code via a malformed message/external-body MIME type.


Multiple content security gateway and antivirus

restrictions | differently | interpreted | antivirus | attackers | Multiple | messages | products | security | content | gateway | clients | fields | bypass | remote | which | allow | name | MIME | mail | same | via | use | may |

Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use multiple MIME fields with the same name, which may be interpreted differently by mail clients.


Multiple content security gateway and antivirus

restrictions | non-standard | incorrectly | interpreted | differently | characters | separators | parameters | separator | attackers | antivirus | Multiple | standard | security | products | messages | content | headers | gateway | clients | fields | values | bypass | remote | within | which | allow | MIME | mail | use | via | may |

Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use non-standard separator characters, or use standard separators incorrectly, within MIME headers, fields, parameters, or values, which may be interpreted differently by mail clients.


Buffer overflow in the UUDeview package, as use

parameters | attackers | arbitrary | overflow | possibly | UUDeview | packages | execute | certain | package | through | archive | remote | Buffer | WinZip | allows | other | long | used | SR-1 | code | MIME | via |

Buffer overflow in the UUDeview package, as used in WinZip 6.2 through WinZip 8.1 SR-1, and possibly other packages, allows remote attackers to execute arbitrary code via a MIME archive with certain long MIME parameters.


Mozilla allows remote attackers to cause Mozill

attackers | different | character | expected | Mozilla | allows | remote | cause | than | null | open | MIME | type | URI | via |

Mozilla allows remote attackers to cause Mozilla to open a URI as a different MIME type than expected via a null character (%00) in an FTP URI.


Eudora 6.1 and 6.0.3 for Windows allows remote

Eudora |

Eudora 6.1 and 6.0.3 for Windows allows remote attackers to cause a denial of service (crash) via a deeply nested multipart MIME message.


Sophos Anti-Virus 3.78 allows remote attackers

Anti-Virus | Sophos |

Sophos Anti-Virus 3.78 allows remote attackers to cause a denial of service (infinite loop) via a MIME header that is not properly terminated.


Cross-site scripting (XSS) vulnerability in mim

Cross-site | scripting |

Cross-site scripting (XSS) vulnerability in mime/handle.html in cPanel 10 allows remote attackers to inject arbitrary web script or HTML via the (1) file extension or (2) mime-type.


Microsoft Exchange Server 2000 SP3, 2003 SP1 an

Microsoft | Exchange | Server |

Microsoft Exchange Server 2000 SP3, 2003 SP1 and SP2, and 2007 does not properly decode certain MIME encoded e-mails, which allows remote attackers to execute arbitrary code via a crafted base64-encoded MIME e-mail message.


Unrestricted file upload vulnerability in userc

vulnerability | Unrestricted | usercpphp | MetaForum | upload | file |

Unrestricted file upload vulnerability in usercp.php in MetaForum 0.513 Beta restricts file types based on the MIME type in the Content-type HTTP header, which allows remote attackers to upload and execute arbitrary scripts via an image MIME type with a filename containing an executable extension such as .php.


Software vulnerabilities results 1 to 20 of 103     
Page: 123456