PT-2016-4600 · Acmailer · Acmailer

Kazuhiro Shibuta

Published

2016-01-16

Updated

2019-02-20

CVE-2016-1142

CVSS v3.1

9.1

Critical

Vector

AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions acmailer versions prior to 3.8.21 acmailer versions 3.9.x prior to 3.9.15 Beta

Description The issue allows remote authenticated users to execute arbitrary OS commands.

Recommendations For acmailer versions prior to 3.8.21, update to version 3.8.21 or later. For acmailer versions 3.9.x prior to 3.9.15 Beta, update to version 3.9.15 Beta or later.

Fix

OS Command Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-78

Related Identifiers

CVE-2016-1142

Affected Products

Acmailer

PT-2016-4600 · Acmailer · Acmailer

CVE-2016-1142

Weakness Enumeration

Related Identifiers

Affected Products

References · 5