CVE-2010-1132

The mlfienvrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message...

DEBIAN-CVE-2010-1132

The mlfienvrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message...

Design/Logic Flaw

The mlfienvrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message...

CVE-2010-1132

CVE-2010-1132 affects spamass-milter (SpamAssassin Milter Plugin) 0.3.1, where using the -x (expand) option allows remote attackers to craft RCPT TO data that executes arbitrary shell commands on the server. The root cause is unsanitized input during alias expansion via the milter, enabling comma...

CVE-2010-1132

The mlfienvrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message...

CVE-2010-1132

The mlfienvrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message...

SpamAssassin Milter Plugin 'mlfi_envrcpt()' Remote Arbitrary Command Injection Vulnerability

SpamAssassin Milter Plugin is prone to a remote command- injection vulnerability because it fails to adequately sanitize user-supplied input data. Remote attackers can exploit this issue to execute arbitrary shell commands with root privileges. SpamAssassin Milter Plugin 0.3.1 is affected; other...

Spamassasin milter plugin shell characters vulnerability

Shell characters vulnerability via RCPT TO: command...

SpamAssassin Milter Plugin 'mlfi_envrcpt()' Remote Arbitrary Command Injection

The remote mail server is affected by a command execution vulnerability. Specifically, the 'spamass-milter' plugin does not properly sanitize user-supplied input and can be tricked into executing arbitrary commands on the remote server by default with root privileges. C Tenable Network Security,...

Apache Spamassassin Milter Plugin Command Execution Vulnerability

Exploit for unknown platform in category remote exploits ================================================================= Apache Spamassassin Milter Plugin Command Execution Vulnerability ================================================================= Spamassassin Milter Plugin Remote Root...

Apache SpamAssassin Milter Plugin 0.3.1 - Remote Command Execution

Apache SpamAssassin Milter Plugin 0.3.1 - Remote Command Execution Description: The Spamassassin Milter plugin suffers from a remote root command execution vulnerability. Full exploit details provided. Author: Kingcope Spamassassin Milter Plugin Remote Root Zeroday BTW zerodays lurk in the shadow...

Spamassassin Milter Plugin Remote Root

Spamassassin Milter Plugin Remote Root Zeroday BTW zerodays lurk in the shadows not HERE aka the postfixjoker advisory Logic fuckup? March 07 2010 // if you read this 10 years later you are definetly seeking the nice 0days! Greetz fly out to alex,andi,adize :D +++ KEEP IT ULTRA PRIV8 +++ Software...

spamass-milter -- remote command execution vulnerability

The spamassassin milter plugin contains a vulnerability that can allow remote attackers to execute commands on affected systems. The vulnerability can be exploited trough a special-crafted email header when the plugin was started with the '-x' expand flag...