Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2011-4542
HistoryNov 30, 2011 - 4:05 a.m.

CVE-2011-4542

2011-11-3004:05:58
CWE-89
[email protected]
web.nvd.nist.gov
26
cve-2011-4542
hastymail2
remote code execution
nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.76 High

EPSS

Percentile

98.2%

JSON

Hastymail2 2.1.1 before RC2 allows remote attackers to execute arbitrary commands via the (1) rs or (2) rsargs[] parameter in a mailbox Drafts action to the default URI.

Affected configurations

NVD
Node
hastymailhastymail2beta1
OR
hastymailhastymail2beta2
OR
hastymailhastymail2beta3
OR
hastymailhastymail2rc1
OR
hastymailhastymail2rc2
OR
hastymailhastymail2rc3
OR
hastymailhastymail2rc4
OR
hastymailhastymail2rc5
OR
hastymailhastymail2rc6
OR
hastymailhastymail2rc7
OR
hastymailhastymail2rc8
OR
hastymailhastymail2rc9
OR
hastymailhastymail2Range≀2.1.1rc1
OR
hastymailhastymail2Match1.0
OR
hastymailhastymail2Match1.01
OR
hastymailhastymail2Match1.1rc1
OR
hastymailhastymail2Match1.1rc2
OR
hastymailhastymail2Match2.0
OR
hastymailhastymail2Match2.0a1
OR
hastymailhastymail2Match2.0a2
OR
hastymailhastymail2Match2.0b1
OR
hastymailhastymail2Match2.0b2
OR
hastymailhastymail2Match2.0b3
OR
hastymailhastymail2Match2.0rc1
OR
hastymailhastymail2Match2.0.1
OR
hastymailhastymail2Match2.0.2
OR
hastymailhastymail2Match2.0.3
OR
hastymailhastymail2Match2.0.4
OR
hastymailhastymail2Match2.0.5

Related

saint 4
seebug 1
checkpoint_advisories 1
prion 1
nvd 1
packetstorm 1
openvas 2
cvelist 1
saint
saint
Hastymail rs parameter command injection
2011-12-28 00:00:00
Hastymail rs parameter command injection
2011-12-28 00:00:00
Hastymail rs parameter command injection
2011-12-28 00:00:00
seebug
seebug
Hastymail "rs"ε’Œ"rsargs[]"ε‚ζ•°θΏœη¨‹δ»£η ζ³¨ε…₯漏洞
2011-11-28 00:00:00
checkpoint_advisories
checkpoint_advisories
Hastymail2 call_user_func_array() Command Injection (CVE-2011-4542)
2014-10-23 00:00:00
prion
prion
Authentication flaw
2011-11-30 04:05:00
nvd
nvd
CVE-2011-4542
2011-11-30 04:05:58
packetstorm
packetstorm
Hastymail 2.1.1 RC1 Command Injection
2012-07-13 00:00:00
openvas
openvas
Hastymail 'rs' and 'rsargs[]' Parameters Remote Code Injection Vulnerabilities
2011-11-25 00:00:00
Hastymail < 2.1.1 RC2 RCE Vulnerability
2011-11-25 00:00:00
cvelist
cvelist
CVE-2011-4542
2011-11-30 02:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.6 High

AI Score

Confidence

Low

0.76 High

EPSS

Percentile

98.2%

JSON
Related for CVE-2011-4542
saint4seebug1checkpoint_advisories1prion1nvd1packetstorm1openvas2cvelist1