Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

debian логотип

CVE-2015-2180

Опубликовано: 30 янв. 2017
Источник: debian

Описание

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.

Пакеты

ПакетСтатусВерсия исправленияРелизТип
roundcubefixed1.1.1+dfsg.1-2package
roundcubenot-affectedwheezypackage

Примечания

  • http://trac.roundcube.net/ticket/1490261

  • http://advisories.mageia.org/MGASA-2015-0400.html

  • http://lists.opensuse.org/opensuse-updates/2015-07/msg00032.html

Связанные уязвимости

ubuntu логотип

CVE-2015-2180

CVSS3: 8.8
ubuntu
около 9 лет назад

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.

nvd логотип

CVE-2015-2180

CVSS3: 8.8
nvd
около 9 лет назад

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.

github логотип

GHSA-hp2w-q4f4-jq5w

CVSS3: 8.8
github
больше 3 лет назад

The DBMail driver in the Password plugin in Roundcube before 1.1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the password.