Showing 1 - 3 of 3

CVE-2011-4078

Status Candidate

Overview

include/iniset.php in Roundcube Webmail 0.5.4 and earlier, when PHP 5.3.7 or 5.3.8 is used, allows remote attackers to trigger a GET request for an arbitrary URL, and cause a denial of service (resource consumption and inbox outage), via a Subject header containing only a URL, a related issue to CVE-2011-3379.

Related Files

HP Security Bulletin HPSBMU02786 SSRT100877 2: Posted May 9, 2013; Authored by HP | Site hp.com; HP Security Bulletin HPSBMU02786 SSRT100877 2 - Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux, Windows, and VMware ESX. The vulnerabilities could be exploited remotely resulting in unauthorized access, disclosure of information, data modification, Denial of Service (DoS), and execution of arbitrary code. Revision 2 of this advisory.; tags | advisory, denial of service, arbitrary, vulnerability; systems | linux, windows; advisories | CVE-2011-1944, CVE-2011-2821, CVE-2011-2834, CVE-2011-3379, CVE-2011-3607, CVE-2011-4078, CVE-2011-4108, CVE-2011-4153, CVE-2011-4317, CVE-2011-4415, CVE-2011-4576, CVE-2011-4577, CVE-2011-4619, CVE-2011-4885, CVE-2012-0021, CVE-2012-0027, CVE-2012-0031, CVE-2012-0036, CVE-2012-0053, CVE-2012-0057, CVE-2012-0830, CVE-2012-1165, CVE-2012-1823, CVE-2012-2012, CVE-2012-2013, CVE-2012-2014, CVE-2012-2015, CVE-2012-2016; MD5 | 80f8158182e481b6569a26d38a63761b; Download | Favorite | View

HP Security Bulletin HPSBMU02786 SSRT100877: Posted Jun 28, 2012; Authored by HP | Site hp.com; HP Security Bulletin HPSBMU02786 SSRT100877 - Potential security vulnerabilities have been identified with HP System Management Homepage (SMH) running on Linux and Windows. The vulnerabilities could be exploited remotely resulting in unauthorized access, disclosure of information, data modification, Denial of Service (DoS), and execution of arbitrary code. Revision 1 of this advisory.; tags | advisory, denial of service, arbitrary, vulnerability; systems | linux, windows; advisories | CVE-2011-1944, CVE-2011-2821, CVE-2011-2834, CVE-2011-3379, CVE-2011-3607, CVE-2011-4078, CVE-2011-4108, CVE-2011-4153, CVE-2011-4317, CVE-2011-4415, CVE-2011-4576, CVE-2011-4577, CVE-2011-4619, CVE-2011-4885, CVE-2012-0021, CVE-2012-0027, CVE-2012-0031, CVE-2012-0036, CVE-2012-0053, CVE-2012-0057, CVE-2012-0830, CVE-2012-1165, CVE-2012-1823, CVE-2012-2012, CVE-2012-2013, CVE-2012-2014, CVE-2012-2015, CVE-2012-2016; MD5 | 31d29fe7aaae474acd1185e3d5e9e226; Download | Favorite | View

Mandriva Linux Security Advisory 2012-072: Posted May 10, 2012; Authored by Mandriva | Site mandriva.com; Mandriva Linux Security Advisory 2012-072 - The login form in Roundcube Webmail before 0.5.1 does not properly handle a correctly authenticated but unintended login attempt, which makes it easier for remote authenticated users to obtain sensitive information by arranging for a victim to login to the attacker's account and then compose an e-mail message, related to a login CSRF issue. Various other issues have also been addressed.; tags | advisory, remote; systems | linux, mandriva; advisories | CVE-2011-1491, CVE-2011-1492, CVE-2011-2937, CVE-2011-4078; MD5 | 7f7ad031bd4842fda2bce59bb38f463e; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 214 files
Ubuntu 45 files
Gentoo 38 files
malvuln 35 files
Geovanni Ruiz 11 files
Brian Rodriguez 10 files
Ron Jost 9 files
Google Security Research 8 files
Apple 8 files
Jim Becher 7 files

File Archives

Systems

AIX (421)
Apple (1,804)
BSD (368)
CentOS (53)
Cisco (1,906)
Debian (5,945)
Fedora (1,688)
FreeBSD (1,241)
Gentoo (4,093)
HPUX (873)
iOS (294)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (40,169)
Mac OS X (678)
Mandriva (3,105)
NetBSD (255)
OpenBSD (474)
RedHat (10,170)
Slackware (941)
Solaris (1,598)
SUSE (1,444)
Ubuntu (7,292)
UNIX (8,912)
UnixWare (180)
Windows (5,991)
Other

CVE-2011-4078

Overview

Related Files

File Archive:

June 2021

Top Authors In Last 30 Days

File Tags

File Archives

Systems