mutt decode xbit software vulnerabilities
vulnerabilities.aspcode.net
Searching mutt decode xbit software vulnerabilities
Mutt mail client allows a remote attacker to ex
metacharacters
|
attacker
|
commands
|
execute
|
allows
|
client
|
remote
|
shell
|
Mutt
|
mail
|
via
|
Mutt mail client allows a remote attacker to execute commands via shell metacharacters.
Vulnerability in RFC822 address parser in mutt
Vulnerability
|
address
|
before
|
parser
|
RFC822
|
mutt
|
Vulnerability in RFC822 address parser in mutt before 1.2.5.1 and mutt 1.3.x before 1.3.25 allows remote attackers to execute arbitrary commands via an improperly terminated comment or phrase in the address list.
Unknown vulnerability in the "ipopts decode" fu
functionality
|
vulnerability
|
Firestorm
|
decode"
|
Unknown
|
"ipopts
|
IDS
|
Unknown vulnerability in the "ipopts decode" functionality in Firestorm IDS 0.4.0 through 0.4.2 allows remote attackers to cause a denial of service (crash) via certain IP options.
The php_if_imap_mime_header_decode function in
php_if_imap_mime_header_decode
|
functionality
|
function
|
before
|
IMAP
|
PHP
|
The php_if_imap_mime_header_decode function in the IMAP functionality in PHP before 4.2.2 allows remote attackers to cause a denial of service (crash) via an e-mail header with a long "To" header.
Buffer overflow in Mutt 1.4.0 and possibly earl
overflow
|
Buffer
|
Mutt
|
Buffer overflow in Mutt 1.4.0 and possibly earlier versions, 1.5.x up to 1.5.3, and other programs that use Mutt code such as Balsa before 2.0.10, allows a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a crafted folder.
Multiple off-by-one buffer overflows in the IMA
off-by-one
|
capability
|
overflows
|
Multiple
|
buffer
|
Mutt
|
IMAP
|
Multiple off-by-one buffer overflows in the IMAP capability for Mutt 1.3.28 and earlier, and Balsa 1.2.4 and earlier, allow a remote malicious IMAP server to cause a denial of service (crash) and possibly execute arbitrary code via a specially crafted mail folder, a different vulnerability than CVE-2003-0140.
The IMAP Client, as used in mutt 1.4.1 and Bals
Client
|
mutt
|
used
|
IMAP
|
The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors.
Integer overflow in parse_decode_path() of sloc
overflow
|
Integer
|
Integer overflow in parse_decode_path() of slocate may allow attackers to execute arbitrary code via a LOCATE_PATH with a large number of ":" (colon) characters, whose count is used in a call to malloc.
Multiple buffer overflows in Gaim 0.75 allow re
overflows
|
Multiple
|
buffer
|
Gaim
|
Multiple buffer overflows in Gaim 0.75 allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) octal encoding in yahoo_decode that causes a null byte to be written beyond the buffer, (2) octal encoding in yahoo_decode that causes a pointer to reference memory beyond the terminating null byte, (3) a quoted printable string to the gaim_quotedp_decode MIME decoder that causes a null byte to be written beyond the buffer, and (4) quoted printable encoding in gaim_quotedp_decode that causes a pointer to reference memory beyond the terminating null byte.
HP OpenView Select Access 5.0 through 6.0 does
restrictions
|
characters
|
correctly
|
attackers
|
OpenView
|
encoded
|
unicode
|
through
|
Access
|
remote
|
decode
|
Select
|
bypass
|
allow
|
could
|
UTF-8
|
which
|
does
|
URL
|
not
|
HP OpenView Select Access 5.0 through 6.0 does not correctly decode UTF-8 encoded unicode characters in a URL, which could allow remote attackers to bypass access restrictions.
Buffer overflow in the decode_post function in
decode_post
|
function
|
overflow
|
before
|
Buffer
|
ELOG
|
Buffer overflow in the decode_post function in ELOG before 2.5.7 allows remote attackers to execute arbitrary code via attachments with long file names.
Eval injection vulnerability in the decode func
rpc_decoderphp
|
vulnerability
|
attackers
|
arbitrary
|
injection
|
possibly
|
programs
|
function
|
execute
|
earlier
|
allows
|
remote
|
base64
|
decode
|
exoops
|
runcms
|
phpRPC
|
other
|
code
|
used
|
Eval
|
tag
|
PHP
|
via
|
Eval injection vulnerability in the decode function in rpc_decoder.php for phpRPC 0.7 and earlier, as used by runcms, exoops, and possibly other programs, allows remote attackers to execute arbitrary PHP code via the base64 tag.
The snmp_trap_decode function in the SNMP NAT h
snmp_trap_decode
|
function
|
helper
|
kernel
|
before
|
Linux
|
SNMP
|
NAT
|
The snmp_trap_decode function in the SNMP NAT helper for Linux kernel before 2.6.16.18 allows remote attackers to cause a denial of service (crash) via unspecified remote attack vectors that cause failures in snmp_trap_decode that trigger (1) frees of random memory or (2) frees of previously-freed memory (double-free) by snmp_trap_decode as well as its calling function, as demonstrated via certain test cases of the PROTOS SNMP test suite.
Stack-based buffer overflow in the browse_get_n
browse_get_namespace
|
imap/browsec
|
Stack-based
|
function
|
overflow
|
buffer
|
Mutt
|
Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server.
The decode_stringmap function in server_transpo
server_transportcpp
|
decode_stringmap
|
function
|
UFO2000
|
svn
|
The decode_stringmap function in server_transport.cpp for UFO2000 svn 1057 allows remote attackers to cause a denial of service (daemon termination) via a keysize or valsize that is inconsistent with the packet size, which leads to a buffer over-read.
Race condition in the safe_open function in the
safe_open
|
condition
|
function
|
client
|
mail
|
Race
|
Mutt
|
Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems.
The mutt_adv_mktemp function in the Mutt mail c
mutt_adv_mktemp
|
function
|
client
|
mail
|
Mutt
|
The mutt_adv_mktemp function in the Mutt mail client 1.5.12 and earlier does not properly verify that temporary files have been created with restricted permissions, which might allow local users to create files with weak permissions via a race condition between the mktemp and safe_fopen function calls.
Mutt 1.5.13 and earlier does not properly use t
Mutt
|
Mutt 1.5.13 and earlier does not properly use the --status-fd argument when invoking GnuPG, which prevents Mutt from visually distinguishing between signed and unsigned portions of OpenPGP messages with multiple components, which allows remote attackers to forge the contents of a message without detection.
Buffer overflow in the sqlite_decode_binary fun
sqlite_decode_binary
|
function
|
overflow
|
library
|
bundled
|
before
|
Buffer
|
sqlite
|
PHP
|
Buffer overflow in the sqlite_decode_binary function in the bundled sqlite library in PHP 4 before 4.4.5 and PHP 5 before 5.2.1 allows context-dependent attackers to execute arbitrary code via an empty value of the in parameter, as demonstrated by calling the sqlite_udf_decode_binary function with a 0x01 character.
Buffer overflow in Mutt 1.4.2 might allow local
overflow
|
Buffer
|
Mutt
|
Buffer overflow in Mutt 1.4.2 might allow local users to execute arbitrary code via "&" characters in the GECOS field, which triggers the overflow during alias expansion.
Software vulnerabilities results 1 to 20 of 40
Page:
1
2
3
►