recipients software vulnerabilities
vulnerabilities.aspcode.net
Searching recipients software vulnerabilities
A "potential buffer overflow in ruleset parsing
"potential
|
parsing"
|
Sendmail
|
overflow
|
ruleset
|
buffer
|
A "potential buffer overflow in ruleset parsing" for Sendmail 8.12.9, when using the nonstandard rulesets (1) recipient (2), final, or (3) mailer-specific envelope recipients, has unknown consequences.
Outlook Express 6.0, when sending multipart e-m
information
|
recipients
|
sensitive
|
addresses
|
attackers
|
multipart
|
messages
|
message
|
setting
|
Outlook
|
sending
|
Express
|
fields
|
listed
|
"Break
|
obtain
|
e-mail
|
remote
|
larger
|
allow
|
apart
|
using
|
than"
|
which
|
leaks
|
BCC
|
may
|
Outlook Express 6.0, when sending multipart e-mail messages using the "Break apart messages larger than" setting, leaks the BCC recipients of the message to the addresses listed in the To and CC fields, which may allow remote attackers to obtain sensitive information.
SpamAssassin 3.0.4 allows attackers to bypass s
SpamAssassin
|
SpamAssassin 3.0.4 allows attackers to bypass spam detection via an e-mail with a large number of recipients ("To" addresses), which triggers a bus error in Perl.
Microsoft Outlook 2000, 2002, and 2003 allows u
Microsoft
|
Outlook
|
Microsoft Outlook 2000, 2002, and 2003 allows user-assisted remote attackers to cause a denial of service (memory exhaustion and interrupted mail recovery) via malformed e-mail header information, possibly related to (1) long subject lines or (2) large numbers of recipients in To or CC headers.
IBM Lotus Notes 6.0, 6.5, and 7.0 does not prop
alternate
|
properly
|
messages
|
replies
|
handle
|
e-mail
|
Lotus
|
users
|
Notes
|
name
|
does
|
not
|
IBM
|
IBM Lotus Notes 6.0, 6.5, and 7.0 does not properly handle replies to e-mail messages with alternate name users when the (1) "Save As Draft" option is used or (2) a "," (comma) is inside the "phrase" portion of an address, which can cause the e-mail to be sent to users that were deleted from the To, CC, and BCC fields, which allows remote attackers to obtain the list of original recipients.
WebAPP before 0.9.9.5 does not properly manage
before
|
WebAPP
|
WebAPP before 0.9.9.5 does not properly manage e-mail addresses in certain contexts related to (1) the Recommend feature, Email Article (2) senders and (3) recipients, (4) New User Approval, (5) Edit Profiles, (6) the Newsletter Subscription form, (7) the Recommend form, and (8) sending of articles, which has unknown impact, and remote attack vectors related to spam attacks and possibly other attacks.
Multiple SQL injection vulnerabilities in Phoru
vulnerabilities
|
injection
|
Multiple
|
before
|
Phorum
|
SQL
|
Multiple SQL injection vulnerabilities in Phorum before 5.1.22 allow remote attackers to execute arbitrary SQL commands via (1) a modified recipients parameter name in (a) pm.php; (2) the curr parameter to the (b) badwords (aka censorlist) or (c) banlist module in admin.php; or (3) the "Edit groups / Add group" field in the (d) groups module in admin.php.
Software vulnerabilities results 1 to 8 of 8
Page:
1