CVE-2003-1202 in Webmailinfo

Summary

The checklogin function in omail.pl for omail webmail 0.98.4 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) password, (2) domainname, or (3) username.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/04/2005

Disclosure

08/19/2003

Moderation

VulDB entry created

Entries

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

9.8

EPSS

0.04040

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-1202
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-1202
CVE Details	https://www.cvedetails.com/cve/CVE-2003-1202/

◂ Previous Overview Next ▸

Do you want to use VulDB in your project?

Use the official API to access entries easily!