Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4542

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-4542
Last Modified 01 Dec 2011 12:00:00
Published 29 Nov 2011 11:05:58
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4542

Summary

Hastymail2 2.1.1 before RC2 allows remote attackers to execute arbitrary commands via the (1) rs or (2) rsargs[] parameter in a mailbox Drafts action to the default URI.

Vulnerable Systems

Application

  • Hastymail2

  • Hastymail2 1.0

  • Hastymail2 1.01

  • Hastymail2 1.1

  • Hastymail2 2.0

  • Hastymail2 2.0.1

  • Hastymail2 2.0.2

  • Hastymail2 2.0.3

  • Hastymail2 2.0.4

  • Hastymail2 2.0.5

  • Hastymail2 2.1.1


References

MISC - https://www.dognaedis.com/vulns/DGS-SEC-3.html


Last Updated: 27 May 2016 10:57:49