openwebmail_init in Open WebMail 1.81 and previous versions allows local users to execute arbitrary code via .. (dot dot) sequences in a login name, such as the name provided in the sessionid parameter for openwebmail-abook.pl, which is used to find a configuration file that specifies additional code to be executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
open webmail open webmail 1.81 |
||
open webmail open webmail 1.7 |
||
open webmail open webmail 1.71 |
||
open webmail open webmail 1.8 |