Horde IMP Remote Command Execution via Sendmail Vulnerability
|
Bugtraq ID:
|
1696
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
|
|
Remote:
|
No
|
|
Local:
|
Yes
|
|
Published:
|
Sep 18 2000 12:00AM
|
|
Updated:
|
Sep 18 2000 12:00AM
|
|
Credit:
|
Found, exploited and documentated by Jens "atomi" Steube. Fixed by Christian "thepoet" Winter. Posted to Bugtraq on September 18, 2000.
|
|
Vulnerable:
|
Horde Project IMP 2.2.1
+
Horde Project Horde 1.2.1
Horde Project IMP 2.2
+
Horde Project Horde 1.2
Horde Project IMP 2.0
-
PHP PHP 4.0.1 pl2
-
PHP PHP 4.0.1
-
PHP PHP 4.0 0
-
PHP PHP 3.0.16
|
|
|
|
Not Vulnerable:
|
Horde Project IMP 2.2.2
+
Horde Project Horde 1.2.2
|
|
