Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-0239

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-0239
Last Modified 05 Sep 2008 04:45:43
Published 02 May 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-0239

Summary

viewcert.php in the S/MIME plugin 0.4 and 0.5 for Squirrelmail allows remote attackers to execute arbitrary commands via shell metacharacters in the cert parameter.

Vulnerable Systems

Application

  • Squirrelmail S Mime Plugin 0.4

  • Squirrelmail S Mime Plugin 0.5


References

CERT-VN - VU#502328

XF - squirrelmail-smime-command-execution(19242)

CONFIRM - http://www.squirrelmail.org/plugin_view.php?id=54

IDEFENSE - 20050207 SquirrelMail S/MIME Plugin Command Injection Vulnerability


Last Updated: 27 May 2016 10:39:44