Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv2

CVE-2002-1271

Published: 12/11/2002 Updated: 18/10/2016
CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10
VMScore: 668
Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Subscribe to Perl-mailtools

Vulnerability Summary

The Mail::Mailer Perl module in the perl-MailTools package 1.47 and previous versions uses mailx as the default mailer, which allows remote malicious users to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx.

Vulnerable Product Search on Vulmon Subscribe to Product

perl-mailtools perl-mailtools 1.40

perl-mailtools perl-mailtools 1.42

perl-mailtools perl-mailtools 1.13

perl-mailtools perl-mailtools 1.1401

perl-mailtools perl-mailtools 1.15

perl-mailtools perl-mailtools 1.44

perl-mailtools perl-mailtools 1.47

Vendor Advisories

Debian Security Advisories: DSA-386-1 libmailtools-perl -- input validation bug
The SuSE security team discovered during an audit a bug in Mail::Mailer, a Perl module used for sending email, whereby potentially untrusted input is passed to a program such as mailx, which may interpret certain escape sequences as commands to be executed This bug has been fixed by removing support for programs such as mailx as a transport for se ...

References

NVD-CWE-Otherhttp://www.iss.net/security_center/static/10548.phphttp://www.debian.org/security/2003/dsa-386http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-076.phphttp://www.novell.com/linux/security/advisories/2002_041_perl_mailtools.htmlhttp://www.securityfocus.com/bid/6104http://marc.info/?l=bugtraq&m=103659723101369&w=2http://marc.info/?l=bugtraq&m=103679569705086&w=2https://nvd.nist.govhttps://www.debian.org/security/./dsa-386
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook