CVE-2002-1197

Опубликовано: 28 окт. 2002

Источник: debian

EPSS Низкий

Описание

bugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote attackers to execute arbitrary code via shell metacharacters in a system call to processmail.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
bugzilla	fixed	2.16.1-1		package

Примечания

woody seems to be vulnerable, bug #282501

EPSS

Процентиль: 84%

0.02116

Низкий

Связанные уязвимости

CVE-2002-1197

nvd

около 23 лет назад

bugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote attackers to execute arbitrary code via shell metacharacters in a system call to processmail.

GHSA-gvwc-rpp5-92h6

github

больше 3 лет назад

bugzilla_email_append.pl in Bugzilla 2.14.x before 2.14.4, and 2.16.x before 2.16.1, allows remote attackers to execute arbitrary code via shell metacharacters in a system call to processmail.

EPSS

Процентиль: 84%

0.02116

Низкий