CVE-2003-0990
published 2004-01-20CVE-2003-0990: The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.
PriorityP354high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
28.79%
97.9th percentile
The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.
Detection & IOCsextracted from sources · hover to see the quote
- ·The Metasploit module requires MAILFROM, MAILTO, and optionally SUBJECT to be configured; the payload is embedded in the email body and the To: header must contain shell metacharacters to trigger the vulnerability. ↗
- ·Only cmd/unix/generic payload types (perl, ruby, bash, telnet) were validated against this module; other payload types may not function correctly. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
SquirrelMail PGP Plugin - Command Execution (SMTP) (Metasploit)
exploitdb·2010-08-25
CVE-2003-0990 SquirrelMail PGP Plugin - Command Execution (SMTP) (Metasploit)
SquirrelMail PGP Plugin - Command Execution (SMTP) (Metasploit)
---
##
# $Id: squirrelmail_pgp_plugin.rb 10148 2010-08-25 20:31:46Z egypt $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'SquirrelMail PGP Plugin command execution (SMTP)',
'Description' => %q{
This module exploits a command execution vulnerability in the
PGP plugin of SquirrelMail. This flaw was found while quickly
grepping the code after release of some information at
http://www.wslabi.com/. Later, iDefense published an advisory ....
Reading an email in SquirrelMail with t
Metasploit
SquirrelMail PGP Plugin Command Execution (SMTP)
metasploit
SquirrelMail PGP Plugin Command Execution (SMTP)
SquirrelMail PGP Plugin Command Execution (SMTP)
This module exploits a command execution vulnerability in the PGP plugin of SquirrelMail. This flaw was found while quickly grepping the code after release of some information at http://www.wslabi.com/. Later, iDefense published an advisory .... Reading an email in SquirrelMail with the PGP plugin activated is enough to compromise the underlying server. Only "cmd/unix/generic" payloads were tested.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=107247236124180&w=2http://www.bugtraq.org/advisories/_BSSADV-0001.txthttp://www.securityfocus.com/archive/1/348366http://www.securityfocus.com/bid/9296https://exchange.xforce.ibmcloud.com/vulnerabilities/14079http://marc.info/?l=bugtraq&m=107247236124180&w=2http://www.bugtraq.org/advisories/_BSSADV-0001.txthttp://www.securityfocus.com/archive/1/348366http://www.securityfocus.com/bid/9296https://exchange.xforce.ibmcloud.com/vulnerabilities/14079
2004-01-20
Published