PEAR Sendmail 'Recipient' Parameter Arbitrary Argument Injection Vulnerability

Bugtraq ID: 37395
Class: Input Validation Error
CVE: CVE-2009-4111
Remote: Yes
Local: No
Published: Nov 28 2009 12:00AM
Updated: Dec 19 2014 12:56AM
Credit: Josh Bressers
Vulnerable: SuSE SUSE Linux Enterprise 11 SP1
SuSE SUSE Linux Enterprise 11
PEAR PEAR 1.1.14
Gentoo Linux
Not Vulnerable: PEAR PEAR 1.2.0b2


 

Privacy Statement
Copyright 2010, SecurityFocus