ID CVE-1999-1153
Type cve
Reporter NVD
Modified 2017-12-18T21:29:02
Description
HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.
{"id": "CVE-1999-1153", "bulletinFamily": "NVD", "title": "CVE-1999-1153", "description": "HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.", "published": "1998-11-09T00:00:00", "modified": "2017-12-18T21:29:02", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-1999-1153", "reporter": "NVD", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/1400"], "cvelist": ["CVE-1999-1153"], "type": "cve", "lastseen": "2017-12-19T12:20:55", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:hamcards_postcard_cgi:hamcards_postcard_cgi:1.0"], "cvelist": ["CVE-1999-1153"], "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "description": "HAMcards Postcard CGI script 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the recipient email address.", "edition": 1, "enchantments": {"score": {"modified": "2016-09-03T02:24:58", "value": 5.1}}, "hash": "7ec354a0491ded1caeaa1b55ced31cf89acc7f2913990d8742854e0f36df2d3f", "hashmap": [{"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "5c4fc5b8730885253cf48dd0fe5bd20b", "key": "references"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "e5d275b3ebd62646b78320753699e02e", "key": "cvss"}, {"hash": "6b692a58ca332641fee368f2e7291061", "key": "href"}, {"hash": "1e4723836476650ce02ced8005706d77", "key": "title"}, {"hash": "1f6ea889f58467cbd468fbcbf233f771", "key": "cpe"}, {"hash": "a945f4e66a59fb2042385d48f1e051d5", "key": "description"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "d58ec4d9c9b82e83e00131b3256e6431", "key": "published"}, {"hash": "5a582e6cb4ec28e79954cf6d5c04bcc1", "key": "modified"}, {"hash": "db7a8d6f1fca4730d16b307a5775bac3", "key": "cvelist"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-1999-1153", "id": "CVE-1999-1153", "lastseen": "2016-09-03T02:24:58", "modified": "2008-09-05T16:18:50", "objectVersion": "1.2", "published": "1998-11-09T00:00:00", "references": ["http://xforce.iss.net/static/1400.php"], "reporter": "NVD", "scanner": [], "title": "CVE-1999-1153", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T02:24:58"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "1f6ea889f58467cbd468fbcbf233f771"}, {"key": "cvelist", "hash": "db7a8d6f1fca4730d16b307a5775bac3"}, {"key": "cvss", "hash": "e5d275b3ebd62646b78320753699e02e"}, {"key": "description", "hash": "a945f4e66a59fb2042385d48f1e051d5"}, {"key": "href", "hash": "6b692a58ca332641fee368f2e7291061"}, {"key": "modified", "hash": "dfd3670021a83e81cf81fbe21930564c"}, {"key": "published", "hash": "d58ec4d9c9b82e83e00131b3256e6431"}, {"key": "references", "hash": "0aaca7ecf2cc543884a87172c8216670"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "1e4723836476650ce02ced8005706d77"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "62fc5e46aedb1d584b75704059aab7597bac99f165dd2caf886d461a02180698", "viewCount": 0, "enchantments": {"vulnersScore": 7.5}, "objectVersion": "1.3", "cpe": ["cpe:/a:hamcards_postcard_cgi:hamcards_postcard_cgi:1.0"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{"result": {"osvdb": [{"id": "OSVDB:12955", "type": "osvdb", "title": "HAMcards Postcard CGI Script Recepient Field Arbitrary Command Execution", "description": "# No description provided by the source\n\n## References:\nMail List Post: http://archives.neohapsis.com/archives/bugtraq/1998_4/0373.html\nISS X-Force ID: 1400\n[CVE-1999-1153](https://vulners.com/cve/CVE-1999-1153)\n", "published": "1998-11-09T00:00:00", "cvss": {"score": 7.5, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:PARTIAL/A:PARTIAL/"}, "href": "https://vulners.com/osvdb/OSVDB:12955", "cvelist": ["CVE-1999-1153"], "lastseen": "2017-04-28T13:20:08"}]}}
