CVE-2001-0024

Name of the Vulnerable Software and Affected Versions: simplestmail.cgi (affected versions not specified)

Description: The simplestmail.cgi CGI program allows remote attackers to execute arbitrary commands via shell metacharacters in the MyEmail parameter. This issue can be exploited by sending malicious input to the CGI program, potentially leading to unauthorized access and command execution.

Recommendations: As a temporary workaround, consider restricting access to the simplestmail.cgi program until a patch is available. Avoid using the MyEmail parameter in the simplestmail.cgi program until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.