CRLF injection vulnerability in CGI-Rescue Mail F/W System (formd) before 8.3 allows remote attackers to spoof e-mails and inject e-mail headers via unspecified vectors in (1) mail.cgi and (2) query.cgi.
References
Link | Resource |
---|---|
http://jvn.jp/jp/JVN%2311048526/index.html | Patch |
http://secunia.com/advisories/21543 | Patch Vendor Advisory |
http://www.osvdb.org/28131 | Patch |
http://www.rescue.ne.jp/whatsnew/blog.cgi/permalink/20060822210549 | Patch |
http://www.securityfocus.com/bid/19676 | Patch |
http://www.vupen.com/english/advisories/2006/3359 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-08-24T20:00:00
Updated: 2006-09-13T09:00:00
Reserved: 2006-08-24T00:00:00
Link: CVE-2006-4344
JSON object: View
NVD Information
Status : Modified
Published: 2006-08-24T20:04:00.000
Modified: 2011-03-08T02:40:47.470
Link: CVE-2006-4344
JSON object: View
Redhat Information
No data.
CWE