CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2003-0990

HIGH
7.5
CVSS Severity Score
EPSS Score0.0870%
EPSS Percentile37.17th
Published2004年1月20日
Last Modified2026年4月16日

Vulnerability Description

The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=107247236124180&w=2
🔗 http://www.bugtraq.org/advisories/_BSSADV-0001.txt
🔗 http://www.securityfocus.com/archive/1/348366
🔗 http://www.securityfocus.com/bid/9296
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/14079
🔗 http://marc.info/?l=bugtraq&m=107247236124180&w=2
🔗 http://www.bugtraq.org/advisories/_BSSADV-0001.txt
🔗 http://www.securityfocus.com/archive/1/348366

相關漏洞威脅

CVE-2003-009510.0

Buffer overflow in ORACLE.EXE for Oracle Database Server 9i, 8i, 8.1.7, and 8.0.6 allows remote attackers to execute arbitrary cod...

CVE-2003-009810.0

Unknown vulnerability in apcupsd before 3.8.6, and 3.10.x before 3.10.5, allows remote attackers to gain root privileges, possibly...

CVE-2003-030410.0

one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to create administrator accounts by directly calling the inst...

CVE-2003-003310.0

Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary code via...