CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Georg Greve: >> Spamassassin Milter Plugin >> 0.3.1 Security Vulnerabilities

CVE-2010-1132

The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.

CVSS Score

9.3

EPSS Score

0.203

Published

2010-03-27

Page 1

Vulnerabilities

Vulnerable Software

Georg Greve: >> Spamassassin Milter Plugin >> 0.3.1 Security Vulnerabilities

Products

Pricing

Contact Us