CVE-2001-1100

CVE-2001-1100

EPSS 3.7%

sendmessage.cgi in W3Mail 1.0.2, and possibly other CGI programs, allows remote attackers to execute arbitrary commands via shell metacharacters in any field of the 'Compose Message' page.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://exchange.xforce.ibmcloud.com/vulnerabilities/7230 http://www.securityfocus.com/archive/1/218921 http://www.securityfocus.com/bid/3673 http://www.w3mail.org/ChangeLog