CVE-2003-0990

Опубликовано: 20 янв. 2004

Источник: debian

Описание

The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
squirrelmail	fixed	1.4.2		package

Примечания

Only potentially exploitable withexternel GPG Plugin, see
http://www.securityfocus.com/archive/1/348366
The potential problems have been fixed as of 1.4.2

Связанные уязвимости

CVE-2003-0990

nvd

около 22 лет назад

The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.

GHSA-mqxh-q47g-h545

github

почти 4 года назад

The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.