CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:S/C:P/I:P/A:P
AI Score
Confidence
Low
EPSS
Percentile
96.1%
Multiple unspecified vulnerabilities in the G/PGP (GPG) Plugin before 2.1 for Squirrelmail might allow βlocal authenticated usersβ to inject certain commands via unspecified vectors. NOTE: this might overlap CVE-2005-1924, CVE-2006-4169, or CVE-2007-3634.
Vendor | Product | Version | CPE |
---|---|---|---|
squirrelmail | gpg_plugin | 2.0 | cpe:2.3:a:squirrelmail:gpg_plugin:2.0:*:*:*:*:*:*:* |
squirrelmail | squirrelmail | 1.4.10a | cpe:2.3:a:squirrelmail:squirrelmail:1.4.10a:*:*:*:*:*:*:* |