cve/CVE-2007-4560.md at 7909e50b64548be2689e5ad0bc37714dc0608a96

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-06-19 17:30:12 +00:00

0xMarcio 49bdc782b3 Update Sun May 26 14:27:04 CEST 2024

2024-05-26 14:27:05 +02:00

Description

clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."

POC

Reference

http://securityreason.com/securityalert/3063

Github

https://github.com/0x1sac/ClamAV-Milter-Sendmail-0.91.2-Remote-Code-Execution
https://github.com/ARPSyndicate/cvemon
https://github.com/Sic4rio/-Sendmail-with-clamav-milter-0.91.2---Remote-Command-Execution

873 B Raw Blame History

CVE-2007-4560

Description

POC

Reference

Github

873 B

Raw Blame History