14 matches found
openSUSE Security Update : php5-pear-mail (openSUSE-SU-2010:0909-1)
Passing specially crafted $from and $recepient arguments to php5-pear-mail's sendmail.php allowed attackers to inject shell code CVE-2009-4023, CVE-2009-4111. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from openSUSE...
Mandriva Update for php-pear-Mail MDVSA-2010:025 (php-pear-Mail)
Check for the Version of php-pear-Mail OpenVAS Vulnerability Test Mandriva Update for php-pear-Mail MDVSA-2010:025 php-pear-Mail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Mandriva Update for php-pear-Mail MDVSA-2010:025 (php-pear-Mail)
Check for the Version of php-pear-Mail OpenVAS Vulnerability Test Mandriva Update for php-pear-Mail MDVSA-2010:025 php-pear-Mail Authors: System Generated Check Copyright: Copyright c 2010 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it...
Mandriva Linux Security Advisory : php-pear-Mail (MDVSA-2010:025)
Multiple vulnerabilities were discovered and corrected in php-pear Mail : Argument injection vulnerability in the sendmail implementation of the Mail::Send method Mail/sendmail.php in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted paramete...
Fedora Core 10 FEDORA-2009-12439 (php-pear-Mail)
The remote host is missing an update to php-pear-Mail announced via advisory FEDORA-2009-12439. OpenVAS Vulnerability Test $Id: fcore200912439.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12439 php-pear-Mail Authors: Thomas Reinke Copyright:...
Fedora Core 12 FEDORA-2009-12395 (php-pear-Mail)
The remote host is missing an update to php-pear-Mail announced via advisory FEDORA-2009-12395. OpenVAS Vulnerability Test $Id: fcore200912395.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-12395 php-pear-Mail Authors: Thomas Reinke Copyright:...
Fedora Core 10 FEDORA-2009-12439 (php-pear-Mail)
The remote host is missing an update to php-pear-Mail announced via advisory FEDORA-2009-12439. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
Fedora Core 11 FEDORA-2009-12348 (php-pear-Mail)
The remote host is missing an update to php-pear-Mail announced via advisory FEDORA-2009-12348. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
Fedora Core 12 FEDORA-2009-12395 (php-pear-Mail)
The remote host is missing an update to php-pear-Mail announced via advisory FEDORA-2009-12395. Note: This VT has been deprecated and is therefore no longer functional. SPDX-FileCopyrightText: 2009 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright ...
Fedora 10 : php-pear-Mail-1.1.14-5.fc10 (2009-12439)
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape content of mail header fields, when using the sendmail backend. A remote attacker could send an email message, with specially crafted headers to local user, leading to disclosure of content and potentially, to modification...
Fedora 12 : php-pear-Mail-1.1.14-5.fc12 (2009-12395)
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape content of mail header fields, when using the sendmail backend. A remote attacker could send an email message, with specially crafted headers to local user, leading to disclosure of content and potentially, to modification...
Fedora 11 : php-pear-Mail-1.1.14-5.fc11 (2009-12348)
Fix CVE-2009-4023, CVE-2009-4111 PEAR's Mail class did not properly escape content of mail header fields, when using the sendmail backend. A remote attacker could send an email message, with specially crafted headers to local user, leading to disclosure of content and potentially, to modification...
CVE-2009-4023
Argument injection vulnerability in the sendmail implementation of the Mail::Send method Mail/sendmail.php in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111...
CVE-2009-4023
Summary: CVE-2009-4023 (with CVE-2009-4111) affects the Mail::Send implementation in PEAR Mail’s sendmail.php for the Mail package, version 1.1.14. A crafted $from parameter allows remote attackers to read and write arbitrary files over the network. The vulnerability is classified with base CVSS ...