Page 7 of 41 results (0.008 seconds)

CVSS: 1.2EPSS: 0%CPEs: 24EXPL: 0

CVE-2006-5297 – Multiple mutt tempfile race conditions

https://notcve.org/view.php?id=CVE-2006-5297

Race condition in the safe_open function in the Mutt mail client 1.5.12 and earlier, when creating temporary files in an NFS filesystem, allows local users to overwrite arbitrary files due to limitations of the use of the O_EXCL flag on NFS filesystems. Condición de carrera en la función safe_open en el cliente de correo Mutt 1.5.12 y anteriores, cuando se crean archivos temporales en un sistema de ficheros NFS, permite a usuarios locales sobreescribir archivos de su elección debido a limitaciones del uso de la bandera O_EXCL en sistemas de ficheros NFS. • http://marc.info/?l=mutt-dev&m=115999486426292&w=2 http://secunia.com/advisories/22613 http://secunia.com/advisories/22640 http://secunia.com/advisories/22685 http://secunia.com/advisories/22686 http://secunia.com/advisories/25529 http://www.mandriva.com/security/advisories?name=MDKSA-2006:190 http://www.redhat.com/support/errata/RHSA-2007-0386.html http://www.securityfocus.com/bid/20733 http://www.trustix.org/errata/2006/0061 http://www.ubuntu.com/usn/usn-373 •

CVSS: 7.5EPSS: 24%CPEs: 2EXPL: 0

CVE-2006-3242

https://notcve.org/view.php?id=CVE-2006-3242

Stack-based buffer overflow in the browse_get_namespace function in imap/browse.c of Mutt 1.4.2.1 and earlier allows remote attackers to cause a denial of service (crash) or execute arbitrary code via long namespaces received from the IMAP server. Desbordamiento de búfer basado en pila en la función browse_get_namespace en imap/browse.c de Mutt v1.4.2.1 y anteriores permite a atacantes remotos causar una denegación de servicio (caída) o ejecutar código de su elección a través de un espacio de nombre largo recibido desde el servidor IMAP. • ftp://patches.sgi.com/support/free/security/advisories/20060701-01-U http://dev.mutt.org/cgi-bin/gitweb.cgi?p=mutt/.git%3Ba=commit%3Bh=dc0272b749f0e2b102973b7ac43dbd3908507540 http://dev.mutt.org/cgi-bin/viewcvs.cgi/mutt/imap/browse.c?r1=1.34.2.2&r2=1.34.2.3 http://secunia.com/advisories/20810 http://secunia.com/advisories/20836 http://secunia.com/advisories/20854 http://secunia.com/advisories/20879 http://secunia.com/advisories/20887 http://secunia.com/advisories/2089 •

CVSS: 7.5EPSS: 19%CPEs: 1EXPL: 5

CVE-2005-2642

https://notcve.org/view.php?id=CVE-2005-2642

Buffer overflow in the mutt_decode_xbit function in Handler.c for Mutt 1.5.10 allows remote attackers to execute arbitrary code, possibly due to interactions with libiconv or gettext. • http://comments.gmane.org/gmane.mail.mutt.devel/8379 http://online.securityfocus.com/archive/1/408493 http://online.securityfocus.com/archive/1/408501 http://secunia.com/advisories/16485 http://securitytracker.com/id?1014729 http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-08/0594.html http://www.derkeiler.com/Mailing-Lists/Full-Disclosure/2005-08/0600.html http://www.securityfocus.com/bid/14596 •

CVSS: 7.5EPSS: 8%CPEs: 18EXPL: 0

CVE-2004-0078

https://notcve.org/view.php?id=CVE-2004-0078

Buffer overflow in the index menu code (menu_pad_string of menu.c) for Mutt 1.4.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via certain mail messages. Desbordamiento de búfer en el código del menú de índice (menu_pad_string de menu.c) de Mutt 1.4.1 y anteriores permite a atacantes remotos causar una denegación de servició (caída) y posiblemente ejecutar código arbitrario mediante ciertos mensajes de correo. • ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2004-013.0.txt http://bugs.debian.org/126336 http://marc.info/?l=bugtraq&m=107651677817933&w=2 http://marc.info/?l=bugtraq&m=107696262905039&w=2 http://marc.info/?l=bugtraq&m=107884956930903&w=2 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2004:010 http://www.osvdb.org/3918 http://www.redhat.com/support/errata/RHSA-2004-050.html http://www.redhat.com/support/errata/RHSA-2004-051.html http:/ •

CVSS: 7.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2003-0299

https://notcve.org/view.php?id=CVE-2003-0299

The IMAP Client, as used in mutt 1.4.1 and Balsa 2.0.10, allows remote malicious IMAP servers to cause a denial of service and possibly execute arbitrary code via certain large mailbox size values that cause either integer signedness errors or integer overflow errors. El cliente IMAP, usado en mutt 1.4.1 y Balsa 2.0.10, permite que servidores IMAP remotos dañinos provoquen una denegación de servicio y posiblemente ejecuten código arbitrario mediante ciertos valores de tamaño para mailbox muy grandes (lo que origina un desbordamiento de búfer de enteros). • http://marc.info/?l=bugtraq&m=105294024124163&w=2 •