CVE-2003-1202

2005-05-1004:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.1%

JSON

The checklogin function in omail.pl for omail webmail 0.98.4 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) password, (2) domainname, or (3) username.

References

marc.info/?l=bugtraq&m=106132514828641&w=2

marc.info/?l=bugtraq&m=106149679129042&w=2

secunia.com/advisories/9585

www.securityfocus.com/bid/8451

exchange.xforce.ibmcloud.com/vulnerabilities/12948