Ingo Procmail Driver Shell Command Execution Vulnerability

Ingo is prone to a vulnerability that may permit the execution of arbitrary shell commands. This issue occurs because the Ingo procmail driver fails to properly sanitize user-supplied input.

Exploiting this issue allows attackers to execute arbitrary commands with the privileges of users executing a vulnerable version of the application.

This issue affects version 1.1.1 and earlier.


 

Privacy Statement
Copyright 2010, SecurityFocus