Title: W3Mail Remote Arbitrary Command Execution Vulnerability
Severity: HIGH
Description:
W3Mail is a full featured open source web mail application implemented as a collection of Perl scripts that runs on Linux and Unix systems. It includes support for fetching mail from POP3 servers, MIME attachments, and for sending outgoing mail.
When sending email, values passed as script parameters are used as part of a shell command. Shell meta characters are not properly filtered from this input. A maliciously formed URL submitted to the script could contain additional shell commands, which would then be executed by the web server user (generally 'nobody'). As a result, an attacker may execute arbitrary code on the vulnerable server.
Earlier versions of W3Mail may also be vulnerable.
Affected Products:
- CascadeSoft W3Mail 1.0.2
References:
- CascadeSoft: W3Mail Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
