CVE-2004-1468

Name of the Vulnerable Software and Affected Versions Usermin versions 1.x Webmin versions 1.x Usermin versions prior to 1.090

Description The issue allows remote attackers to execute arbitrary commands via shell metacharacters in an e-mail message, potentially leading to disruption of confidentiality, integrity, and availability of protected information. This can be exploited remotely.

Recommendations For Usermin versions 1.x, update to a version later than 1.090 to resolve the issue. For Webmin versions 1.x, update to a version later than 1.090 to resolve the issue. For Usermin versions prior to 1.090, update to version 1.090 or later to resolve the issue. As a temporary workaround, consider restricting access to the web mail functionality in Usermin and Webmin until a patch is available.