Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2009-1579

The map_yp_alias function in functions/imap_general.php in SquirrelMail before 1.4.18 and NaSMail before 1.7 allows remote attackers to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program.

  • Published: May 14, 2009
  • Updated: Apr 13, 2023
  • CVE: CVE-2009-1579
  • Severity: Medium
  • Exploit:

CVSS v2:

  • Severity: Medium
  • Score: 6.8
  • AV:N/AC:M/Au:N/C:P/I:P/A:P

CWEs:

Software From Fixed in
squirrelmail / squirrelmail 1.3.1 1.3.1.x
squirrelmail / squirrelmail 0.4 0.4.x
squirrelmail / squirrelmail 1.0.6 1.0.6.x
squirrelmail / squirrelmail 1.0.5 1.0.5.x
squirrelmail / squirrelmail 0.3 0.3.x
squirrelmail / squirrelmail 0.4pre2 0.4pre2.x
squirrelmail / squirrelmail 1.1.0 1.1.0.x
squirrelmail / squirrelmail 1.0pre2 1.0pre2.x
squirrelmail / squirrelmail 0.3.1 0.3.1.x
squirrelmail / squirrelmail 0.1.2 0.1.2.x
squirrelmail / squirrelmail 1.2.7 1.2.7.x
squirrelmail / squirrelmail 1.0.1 1.0.1.x
squirrelmail / squirrelmail 0.2.1 0.2.1.x
squirrelmail / squirrelmail 1.4.12 1.4.12.x
squirrelmail / squirrelmail 1.2.0 1.2.0.x
squirrelmail / squirrelmail 1.2.9 1.2.9.x
squirrelmail / squirrelmail 0.1 0.1.x
squirrelmail / squirrelmail 1.4.15 1.4.15.x
squirrelmail / squirrelmail 1.2.2 1.2.2.x
squirrelmail / squirrelmail 0.5pre2 0.5pre2.x
squirrelmail / squirrelmail 1.1.1 1.1.1.x
squirrelmail / squirrelmail 1.4.16 1.4.16.x
squirrelmail / squirrelmail 1.2.0_rc3 1.2.0_rc3.x
squirrelmail / squirrelmail 1.1.2 1.1.2.x
squirrelmail / squirrelmail 1.4.15_rc1 1.4.15_rc1.x
squirrelmail / squirrelmail - -
squirrelmail / squirrelmail 0.3pre2 0.3pre2.x
squirrelmail / squirrelmail 0.1.1 0.1.1.x
squirrelmail / squirrelmail 1.3.2 1.3.2.x
squirrelmail / squirrelmail 1.2.1 1.2.1.x
squirrelmail / squirrelmail 1.4.1 1.4.1.x
squirrelmail / squirrelmail 1.2 1.2.x
squirrelmail / squirrelmail 1.4.0_rc2a 1.4.0_rc2a.x
squirrelmail / squirrelmail 1.4.0_rc1 1.4.0_rc1.x
squirrelmail / squirrelmail 1.4.0 1.4.0.x
squirrelmail / squirrelmail 1.4 1.4.x
squirrelmail / squirrelmail 1.1.3 1.1.3.x
squirrelmail / squirrelmail 1.2.4 1.2.4.x
squirrelmail / squirrelmail 0.5pre1 0.5pre1.x
squirrelmail / squirrelmail 1.2.3 1.2.3.x
squirrelmail / squirrelmail 1.4.10 1.4.10.x
squirrelmail / squirrelmail 1.0.2 1.0.2.x
squirrelmail / squirrelmail 1.0.4 1.0.4.x
squirrelmail / squirrelmail 1.0pre1 1.0pre1.x
squirrelmail / squirrelmail 1.2.6 1.2.6.x
squirrelmail / squirrelmail 1.4.10a 1.4.10a.x
squirrelmail / squirrelmail 0.3pre1 0.3pre1.x
squirrelmail / squirrelmail 1.2.10 1.2.10.x
squirrelmail / squirrelmail 0.4pre1 0.4pre1.x
squirrelmail / squirrelmail 1.2.5 1.2.5.x
squirrelmail / squirrelmail 1.4.11 1.4.11.x
squirrelmail / squirrelmail 1.0.3 1.0.3.x
squirrelmail / squirrelmail 1.3.0 1.3.0.x
squirrelmail / squirrelmail 1.0 1.0.x
squirrelmail / squirrelmail 0.2 0.2.x
squirrelmail / squirrelmail 1.2.8 1.2.8.x
squirrelmail / squirrelmail 1.2.11 1.2.11.x
squirrelmail / squirrelmail 0.5 0.5.x
squirrelmail / squirrelmail - 1.4.17.x
squirrelmail / squirrelmail 1.0pre3 1.0pre3.x