Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in the ModWeb agent for Novell NetMail 3.52 before 3.52C allows remote attackers to inject arbitrary web script or HTML via calendar display fields.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Novell NetMail 堆溢出漏洞
Vulnerability Description
Novell NetMail是基于Internet标准消息和安全协议的邮件和日历系统。 Novell NetMail IMAP守护程序中存在堆溢出漏洞,成功利用这个漏洞的攻击者可以在目标机器上执行任意代码。 在处理命令延续请求时直接将用户定义的大小值用作了自定义内存分配封装(MMalloc())的参数: 00402CA2 lea ecx, [ebx+1] ; ebx是由攻击者控制的 00402CA5 push ecx 00402CA6 call MMmalloc MMalloc()在分配内存前对所提供的值
CVSS Information
N/A
Vulnerability Type
N/A