Open WebMail vacation.pl program execution
| open-webmail-vacation-program-execution (16549) |  High Risk |
Description:
Open WebMail could allow a remote authenticated attacker to execute arbitrary programs on the system, caused by improper filtering of user-supplied input in the vacation.pl script. By supplying a malicious file name, a remote attacker could execute an arbitrary program on the system.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of Open WebMail (20040629 or later), available from the Open WebMail Web site. See References.
References:
- Open WebMail Web site: Open WebMail.
- BID-10637: Open WebMail Vacation.PL Remote Command Execution Variant Vulnerability
- CVE-2004-2284: The read_list_from_file function in vacation.pl for OpenWebmail before 2.32 20040629 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename argument.
- OSVDB ID: 7474: Open WebMail vacation.pl Arbitrary Command Execution
- SA12017: Open WebMail "vacation.pl" Arbitrary Program Execution Vulnerability
- SECTRACK ID: 1010605: Open WebMail Input Validation Flaw in `vacation.pl` Lets Remote Users Execute Arbitrary Programs
Platforms Affected:
- Open WebMail Project Open WebMail prior to 20040629
Reported:
Jun 29, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net