Pineapp: >> Mail-Secure 5099sk Security Vulnerabilities
admin/confnetworking.html in PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms allows remote attackers to execute arbitrary commands via shell metacharacters in the nsserver parameter during an nslookup operation.
CVSS Score
7.5
EPSS Score
0.079
Published
2013-11-20
PineApp Mail-SeCure 3.70 and earlier on 5099SK and earlier platforms has a sudoers file that does not properly restrict user specifications, which allows local users to gain privileges via a sudo command that leverages access to the qmailq account.
CVSS Score
7.2
EPSS Score
0.002
Published
2013-11-20