← volver
CVE-2006-4019

CVE-2006-4019

EPSS 9.2%
Dynamic variable evaluation vulnerability in compose.php in SquirrelMail 1.4.0 to 1.4.7 allows remote attackers to overwrite arbitrary program variables and read or write the attachments and preferences of other users.
Productos afectados
n/a · n/a
PoCs públicas encontradas1
exploitdbwww.exploit-db.com/exploits/43839no verificado
⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
ftp://patches.sgi.com/support/free/security/advisories/20061001-01-P.aschttp://attrition.org/pipermail/vim/2006-August/000970.htmlhttp://docs.info.apple.com/article.html?artnum=306172http://lists.apple.com/archives/security-announce//2007/Jul/msg00004.htmlhttp://marc.info/?l=full-disclosure&m=115532449024178&w=2http://secunia.com/advisories/21354http://secunia.com/advisories/21444http://secunia.com/advisories/21586http://secunia.com/advisories/22080http://secunia.com/advisories/22104http://secunia.com/advisories/22487http://secunia.com/advisories/26235