An issue in China Mobile OA Mailbox PC v2.9.23 allows remote attackers to execute arbitrary commands on a victim host via user interaction with a crafted EML file sent to their OA mailbox.
References
Link | Resource |
---|---|
https://gist.github.com/YZLCQX/0da0a438292a5479470c52dad8210462 | Third Party Advisory |
https://github.com/YZLCQX/Mailbox-remote-command-execution | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-10T00:00:00
Updated: 2023-04-10T00:00:00
Reserved: 2023-02-27T00:00:00
Link: CVE-2023-26986
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-04-10T16:15:07.237
Modified: 2023-04-14T16:39:28.957
Link: CVE-2023-26986
JSON object: View
Redhat Information
No data.
CWE