Lucene search
PRIOn knowledge basePRION:CVE-2007-2173HistoryApr 24, 2007 - 4:19 p.m.
Design/Logic Flaw
2007-04-2416:19:00
PRIOn knowledge base
www.prio-n.com
1
8.4 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.3%
Eval injection vulnerability in (1) courier-imapd.indirect and (2) courier-pop3d.indirect in Courier-IMAP before 4.0.6-r2, and 4.1.x before 4.1.2-r1, on Gentoo Linux allows remote attackers to execute arbitrary commands via the XMAILDIR variable, related to the LOGINRUN variable.
| CPE | Name | Operator | Version |
|---|---|---|---|
| courier-imap | eq | 4.0.0 | |
| courier-imap | eq | 4.0.1 | |
| courier-imap | eq | 4.0.2 | |
| courier-imap | eq | 4.0.3 | |
| courier-imap | eq | 4.0.4 | |
| courier-imap | eq | 4.0.5 | |
| courier-imap | eq | 4.1.0 | |
| courier-imap | eq | 4.1.1 |
Related
openvas
openvas
Gentoo Security Advisory GLSA 200704-18 (courier-imap)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200704-18 (courier-imap)
2008-09-24 00:00:00
cvelist
cvelist
CVE-2007-2173
2007-04-24 16:00:00
cve
cve
CVE-2007-2173
2007-04-24 16:19:00
8.4 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.013 Low
EPSS
Percentile
85.3%
Related for PRION:CVE-2007-2173