漏洞信息详情
MIT CGIEmail任意邮件接收中继漏洞
- CNNVD编号:CNNVD-200403-019
- 危害等级: 中危
![图片[1]-MIT CGIEmail任意邮件接收中继漏洞-一一网](https://www.proyy.com/skycj/data/images/2021-05-17/30f462579bec41fc25e0b1d57503e6d6.png)
- CVE编号:
CVE-2002-1575
- 漏洞类型:
输入验证
- 发布时间:
2004-03-03
- 威胁类型:
远程
- 更新时间:
2005-10-20
- 厂 商:
mit - 漏洞来源:
Credited to sec
-
漏洞简介
cgiemail存在漏洞。远程攻击者可以借助回车换行向例如 \”required-subject,\”的参数中注入换行符(\\%0a)的编码字符。该漏洞可以用来修改抄送,密送以及其他邮件消息中的头字段。
漏洞公告
Debian has released advisory DSA 437-1 dealing with this issue:
MIT cgiemail 1.6
Debian cgiemail_1.6-14woody1_alpha.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_alpha.deb-
Debian cgiemail_1.6-14woody1_arm.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_arm.deb -
Debian cgiemail_1.6-14woody1_hppa.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_hppa.deb -
Debian cgiemail_1.6-14woody1_i386.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_i386.deb -
Debian cgiemail_1.6-14woody1_ia64.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_ia64.deb -
Debian cgiemail_1.6-14woody1_m68k.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_m68k.deb -
Debian cgiemail_1.6-14woody1_mips.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_mips.deb -
Debian cgiemail_1.6-14woody1_mipsel.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_mipsel.deb -
Debian cgiemail_1.6-14woody1_powerpc.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_powerpc.deb -
Debian cgiemail_1.6-14woody1_s390.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_s390.deb -
Debian cgiemail_1.6-14woody1_sparc.deb
http://security.debian.org/pool/updates/main/c/cgiemail/cgiemail_1.6-1
4woody1_sparc.deb
参考网址
来源: BID
名称: 5013
链接:http://www.securityfocus.com/bid/5013
来源: DEBIAN
名称: DSA-437
链接:http://www.debian.org/security/2004/dsa-437
来源: XF
名称: cgiemail-open-mail-relay(9361)
链接:http://xforce.iss.net/xforce/xfdb/9361
来源: BUGTRAQ
名称: 20020614 Another cgiemail bug
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=102406554627053&w=2
来源: BUGTRAQ
名称: 20031003 patch for vulnerability in cgiemail
链接:http://marc.theaimsgroup.com/?l=bugtraq&m=106520691705768&w=2
受影响实体
© 版权声明
文章版权归作者所有,未经允许请勿转载。
THE END
![[桜井宁宁]COS和泉纱雾超可爱写真福利集-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/4d3cf227a85d7e79f5d6b4efb6bde3e8.jpg)
![[桜井宁宁] 爆乳奶牛少女cos写真-一一网](https://www.proyy.com/skycj/data/images/2020-12-13/d40483e126fcf567894e89c65eaca655.jpg)
