Описание
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
| Релиз | Статус | Примечание |
|---|---|---|
| artful | ignored | end of life |
| bionic | released | 1.9.4-3ubuntu0.1 |
| cosmic | released | 1.10.1-1 |
| devel | released | 1.10.1-1 |
| disco | released | 1.10.1-1 |
| eoan | released | 1.10.1-1 |
| esm-infra-legacy/trusty | DNE | trusty/esm was DNE [trusty was released [1.5.21-6.4ubuntu2.2]] |
| esm-infra/bionic | released | 1.9.4-3ubuntu0.1 |
| esm-infra/focal | released | 1.10.1-1 |
| esm-infra/xenial | released | 1.5.24-1ubuntu0.2 |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| artful | DNE | |
| bionic | ignored | end of standard support, was needed |
| cosmic | ignored | end of life |
| devel | not-affected | 20180716+dfsg.1-1.2 |
| disco | not-affected | 20180716+dfsg.1-1 |
| eoan | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/bionic | released | 20171215+dfsg.1-1ubuntu0.1~esm1 |
| esm-apps/focal | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/jammy | not-affected | 20180716+dfsg.1-1.2 |
| esm-apps/noble | not-affected | 20180716+dfsg.1-1.2 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3
Связанные уязвимости
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018- ...
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. They allow remote IMAP servers to execute arbitrary commands via backquote characters, related to the mailboxes command associated with an automatic subscription.
Уязвимость почтовых клиентов Mutt и NeoMutt, связанная с непринятием мер по чистке данных на управляющем уровне, позволяющая нарушителю выполнить произвольные команды
EPSS
7.5 High
CVSS2
9.8 Critical
CVSS3