CVE-2002-1575

Name of the Vulnerable Software and Affected Versions cgiemail (affected versions not specified)

Description The issue allows remote attackers to use cgiemail as a spam proxy via CRLF injection of encoded newline (%0a) characters in parameters such as required-subject, which can be used to modify the CC, BCC, and other header fields in the generated email message.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.