3 matches found
CVE-2007-3636
Multiple unspecified vulnerabilities in the G/PGP GPG Plugin 2.1 for Squirrelmail allow remote attackers to execute arbitrary commands via unspecified vectors. NOTE: this information is based upon a vague pre-advisory from a reliable researcher...
CVE-2007-3636
CVE-2007-3636 involves the G/PGP (GPG) Plugin 2.1 for Squirrelmail with multiple vulnerabilities that enable remote command execution. Publicly available records describe exploitation via unspecified vectors, as noted in both NVD and Red Hat entries. A related historical detail (CVE-2005-1924) sp...
CVE-2005-1924
The G/PGP GPG Plugin 2.1 and earlier for Squirrelmail allow remote authenticated users to execute arbitrary commands via shell metacharacters in 1 the fpr parameter to the deleteKey function in gpgkeyring.php, as called by a importkeyfile.php, b importkeytext.php, and c keyringmain.php; and 2 the...