cve/CVE-2019-7214.md at 410e68ca9dddb67493d84ae4fe8e1a9e392594db

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-28 01:04:30 +00:00

0xMarcio ba290685fe Update CVE sources 2024-06-09 00:33

2024-06-09 00:33:16 +00:00

Description

SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthenticated attacker could run commands on the server when port 17001 was remotely accessible. This port is not accessible remotely by default after applying the Build 6985 patch.

POC

Reference

http://packetstormsecurity.com/files/160416/SmarterMail-6985-Remote-Code-Execution.html
http://packetstormsecurity.com/files/160416/SmarterMail-6985-Remote-Code-Execution.html
http://packetstormsecurity.com/files/173388/SmarterTools-SmarterMail-Remote-Code-Execution.html
http://packetstormsecurity.com/files/173388/SmarterTools-SmarterMail-Remote-Code-Execution.html

Github

https://github.com/ARPSyndicate/cvemon
https://github.com/andyfeili/-CVE-2019-7214
https://github.com/developer3000S/PoC-in-GitHub
https://github.com/devzspy/CVE-2019-7214
https://github.com/hectorgie/PoC-in-GitHub
https://github.com/hktalent/bug-bounty
https://github.com/nomi-sec/PoC-in-GitHub

1.3 KiB Raw Blame History

CVE-2019-7214

Description

POC

Reference

Github

1.3 KiB

Raw Blame History