CVE-2002-0436

Name of the Vulnerable Software and Affected Versions Sun Sunsolve CD pack version (affected versions not specified)

Description The issue concerns the sscd suncourier.pl CGI script, which allows remote attackers to execute arbitrary commands. This is achieved by injecting shell metacharacters into the email address parameter.

Recommendations For the affected version, consider restricting access to the sscd suncourier.pl CGI script until a fix is available. As a temporary workaround, avoid using the email address parameter in the vulnerable script to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.