RSS   Vulnerabilities for 'Al-mail32'   RSS

2015-02-20
 
CVE-2015-0880

 

 
Buffer overflow in CREAR AL-Mail32 before 1.13d allows remote attackers to execute arbitrary code via a long filename of an attachment.

 
 
CVE-2015-0879

CWE-20
 

 
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service (application crash) via a (1) CON, (2) AUX, or (3) NUL device name in the filename of an attachment.

 
 
CVE-2015-0878

CWE-22
 

 
Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment.

 


Copyright 2017, cxsecurity.com

 

Back to Top