Описание
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | not-affected | 0.3.1-9 |
| hardy | ignored | end of life |
| intrepid | ignored | end of life, was needed |
| jaunty | released | 0.3.1-8+lenny1build0.9.04.1 |
| karmic | released | 0.3.1-8+lenny1build0.9.10.1 |
| lucid | not-affected | 0.3.1-9 |
| maverick | not-affected | 0.3.1-9 |
| natty | not-affected | 0.3.1-9 |
| oneiric | not-affected | 0.3.1-9 |
Показывать по
9.3 Critical
CVSS2
Связанные уязвимости
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter ...
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
9.3 Critical
CVSS2