6 results (0.009 seconds)

CVSS: 5.1EPSS: 10%CPEs: 4EXPL: 0

Stack-based buffer overflow in the trace message functionality in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allow remote attackers to execute arbitrary code via a long POP3 reply. • http://secunia.com/advisories/17992 http://secunia.com/secunia_research/2005-61/advisory http://securitytracker.com/id?1015385 http://www.osvdb.org/21842 http://www.pmail.com/newsflash.htm#secunia http://www.securityfocus.com/archive/1/419908/100/0/threaded http://www.securityfocus.com/bid/15973 http://www.vupen.com/english/advisories/2005/3004 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.1EPSS: 11%CPEs: 4EXPL: 0

Off-by-one error in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allows remote attackers to execute arbitrary code via a long email message header, which triggers a one-byte buffer overflow. • http://secunia.com/advisories/17992 http://secunia.com/secunia_research/2005-61/advisory http://securitytracker.com/id?1015385 http://www.osvdb.org/21843 http://www.pmail.com/newsflash.htm#secunia http://www.securityfocus.com/archive/1/419908/100/0/threaded http://www.securityfocus.com/bid/15973 •

CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 2

Buffer overflow in Pegasus mail client 4.01 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) To or (2) From headers. • https://www.exploit-db.com/exploits/21648 http://archives.neohapsis.com/archives/bugtraq/2002-07/0277.html http://www.iss.net/security_center/static/9673.php http://www.securityfocus.com/bid/5302 •

CVSS: 5.0EPSS: 2%CPEs: 1EXPL: 2

Pegasus Mail 3.12 allows remote attackers to read arbitrary files via an embedded URL that calls the mailto: protocol with a -F switch. • https://www.exploit-db.com/exploits/20249 http://archives.neohapsis.com/archives/bugtraq/2000-10/0039.html http://archives.neohapsis.com/archives/bugtraq/2000-10/0436.html http://www.securityfocus.com/bid/1738 https://exchange.xforce.ibmcloud.com/vulnerabilities/5326 •

CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0

Buffer overflow in Pegasus Mail 3.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long email message containing binary data. • http://www.securityfocus.com/archive/1/137518 http://www.securityfocus.com/bid/1750 •