Описание
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscription.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 1.9.4-3ubuntu0.1 |
| cosmic | released | 1.10.1-1 |
| devel | released | 1.10.1-1 |
| disco | released | 1.10.1-1 |
| eoan | released | 1.10.1-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.5.21-6.4ubuntu2.2]] |
| esm-infra/bionic | released | 1.9.4-3ubuntu0.1 |
| esm-infra/focal | released | 1.10.1-1 |
| esm-infra/xenial | released | 1.5.24-1ubuntu0.2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | not-affected | 20180716+dfsg.1-1.2 |
| disco | not-affected | 20180716+dfsg.1-1 |
| eoan | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/bionic | released | 20171215+dfsg.1-1ubuntu0.1~esm1 |
| esm-apps/focal | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/jammy | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/noble | not-affected | 20180716+dfsg.1-1.2 |
Показывать по
Ссылки на источники
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscription.
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscription.
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018- ...
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with a manual subscription or unsubscription.
Уязвимость почтовых клиентов Mutt и NeoMutt, связанная с непринятием мер по чистке данных на управляющем уровне, позволяющая нарушителю выполнить произвольные команды
7.5 High
CVSS2
9.8 Critical
CVSS3