CyberSec.Space Logo
CVEブラウザに戻る

CVE-2003-1202

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1980%
EPSS Percentile18.00th
Published2003年8月19日
Last Modified2026年4月16日

Vulnerability Description

The checklogin function in omail.pl for omail webmail 0.98.4 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in a (1) password, (2) domainname, or (3) username.

Affected Platforms (CPE)

📦
Omail

Omail Webmail

= 0.97.3
📦
Omail

Omail Webmail

= 0.98.4

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=106132514828641&w=2
🔗 http://marc.info/?l=bugtraq&m=106149679129042&w=2
🔗 http://secunia.com/advisories/9585
🔗 http://www.securityfocus.com/bid/8451
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/12948
🔗 http://marc.info/?l=bugtraq&m=106132514828641&w=2
🔗 http://marc.info/?l=bugtraq&m=106149679129042&w=2
🔗 http://secunia.com/advisories/9585

関連する脆弱性情報

CVE-2004-199310.0

The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute ...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...