7.5
CVE-2002-1271
- EPSS 3.56%
- Veröffentlicht 12.11.2002 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:59:02
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginThe Mail::Mailer Perl module in the perl-MailTools package 1.47 and earlier uses mailx as the default mailer, which allows remote attackers to execute arbitrary commands by inserting them into the mail body, which is then processed by mailx.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Perl-mailtools ≫ Perl-mailtools Version1.13
Perl-mailtools ≫ Perl-mailtools Version1.15
Perl-mailtools ≫ Perl-mailtools Version1.40
Perl-mailtools ≫ Perl-mailtools Version1.42
Perl-mailtools ≫ Perl-mailtools Version1.44
Perl-mailtools ≫ Perl-mailtools Version1.47
Perl-mailtools ≫ Perl-mailtools Version1.1401
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 3.56% | 0.878 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=103659723101369&w=2
http://marc.info/?l=bugtraq&m=103679569705086&w=2
http://www.debian.org/security/2003/dsa-386
http://www.iss.net/security_center/static/10548.php
http://www.linux-mandrake.com/en/security/2002/MDKSA-2002-076.php
http://www.novell.com/linux/security/advisories/2002_041_perl_mailtools.html
http://www.securityfocus.com/bid/6104