Computer Security
[EN] securityvulns.ru no-pyccku


Courier-IMAP shell characters problem
Published:23.04.2007
Source:
SecurityVulns ID:7629
Type:remote
Threat Level:
8/10
Description:Invalid usage of XMAILDIR environment variable controlled by attacker thorugh logon request in the scripts courier-imapd.indirect and courier-pop3d.indirect
Affected:DOUBLEPRECISION : Courier-IMAP 4.0
Original documentdocumentGENTOO, [Full-disclosure] [ GLSA 200704-18 ] Courier-IMAP: Remote execution of arbitrary code (23.04.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod