Search criteria

6 vulnerabilities found for qmailadmin by inter7

FKIE_CVE-2006-1141

Vulnerability from fkie_nvd - Published: 2006-03-10 11:02 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable.
References
cve@mitre.orghttp://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10&r2=1.6.2.11
cve@mitre.orghttp://secunia.com/advisories/19262
cve@mitre.orghttp://secunia.com/advisories/23019
cve@mitre.orghttp://security.gentoo.org/glsa/glsa-200611-15.xml
cve@mitre.orghttp://sourceforge.net/project/shownotes.php?group_id=6691&release_id=395211Patch
cve@mitre.orghttp://www.osvdb.org/23705
cve@mitre.orghttp://www.securityfocus.com/bid/16994Patch
cve@mitre.orghttp://www.vupen.com/english/advisories/2006/0852
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/25065
af854a3a-2127-422b-91ae-364da2661108http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10&r2=1.6.2.11
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/19262
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/23019
af854a3a-2127-422b-91ae-364da2661108http://security.gentoo.org/glsa/glsa-200611-15.xml
af854a3a-2127-422b-91ae-364da2661108http://sourceforge.net/project/shownotes.php?group_id=6691&release_id=395211Patch
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/23705
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/16994Patch
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2006/0852
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/25065
Impacted products
Vendor Product Version
inter7 qmailadmin 1.0.1
inter7 qmailadmin 1.0.2
inter7 qmailadmin 1.0.3
inter7 qmailadmin 1.0.4
inter7 qmailadmin 1.0.5
inter7 qmailadmin 1.0.6
inter7 qmailadmin 1.2.0
inter7 qmailadmin 1.2.1
inter7 qmailadmin 1.2.3
inter7 qmailadmin 1.2.7
inter7 qmailadmin 1.2.8
inter7 qmailadmin 1.2.9
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "336C8A4D-C6CA-4325-8398-CCCFAAC850F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F366EFE3-EED4-422D-826C-134F9B8492B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C66E9BF4-F534-4394-8286-009FA352BD6A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4318740-E649-41E3-B9DB-C6055C8AA3D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C6A330A-3FA7-4152-8630-9E90B6DE9C7C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.6:*:*:*:*:*:*:*",
              "matchCriteriaId": "5A9B9292-79A0-4596-856C-073F3EBA8113",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "7F074F1C-32E4-4CE8-A8A4-4372BE59CD09",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "B7FD7A89-6F5F-4FC7-971F-066A68E9891C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "F7B7FF0B-779C-4340-9CA7-06CA50306CE7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.7:*:*:*:*:*:*:*",
              "matchCriteriaId": "DDD6BE7C-4E13-42B4-A5FA-5105F4B95DFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "A6712972-1C36-42C9-A835-C4ED20302DDF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.2.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "E16E9422-EBE3-483F-82A8-84465BBB42D3",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable."
    }
  ],
  "id": "CVE-2006-1141",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": true,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-03-10T11:02:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/19262"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/23019"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/23705"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/16994"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/0852"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/19262"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/23019"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/23705"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/16994"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/0852"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2002-1414

Vulnerability from fkie_nvd - Published: 2003-04-11 04:00 - Updated: 2025-04-03 01:03
Severity ?
Summary
Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable.
References
cve@mitre.orghttp://archives.neohapsis.com/archives/bugtraq/2002-08/0016.htmlExploit
cve@mitre.orghttp://marc.info/?l=vuln-dev&m=102859603029424&w=2
cve@mitre.orghttp://www.inter7.com/qmailadmin/ChangeLog
cve@mitre.orghttp://www.iss.net/security_center/static/9786.php
cve@mitre.orghttp://www.securityfocus.com/bid/5404Exploit, Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.htmlExploit
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=vuln-dev&m=102859603029424&w=2
af854a3a-2127-422b-91ae-364da2661108http://www.inter7.com/qmailadmin/ChangeLog
af854a3a-2127-422b-91ae-364da2661108http://www.iss.net/security_center/static/9786.php
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/5404Exploit, Patch, Vendor Advisory
Impacted products
Vendor Product Version
inter7 qmailadmin 1.0
inter7 qmailadmin 1.0.1
inter7 qmailadmin 1.0.2
inter7 qmailadmin 1.0.3
inter7 qmailadmin 1.0.4
inter7 qmailadmin 1.0.5
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BD3E09B-D2D0-4964-9E40-875D5CB643AC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "336C8A4D-C6CA-4325-8398-CCCFAAC850F1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.2:*:*:*:*:*:*:*",
              "matchCriteriaId": "F366EFE3-EED4-422D-826C-134F9B8492B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.3:*:*:*:*:*:*:*",
              "matchCriteriaId": "C66E9BF4-F534-4394-8286-009FA352BD6A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "D4318740-E649-41E3-B9DB-C6055C8AA3D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:inter7:qmailadmin:1.0.5:*:*:*:*:*:*:*",
              "matchCriteriaId": "3C6A330A-3FA7-4152-8630-9E90B6DE9C7C",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en qmailadmin permite a usuarios locales ganar privilegios mediante una varibale de entorno QMAILADMIN_TEMPLATEDIR larga."
    }
  ],
  "id": "CVE-2002-1414",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.6,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2003-04-11T04:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.inter7.com/qmailadmin/ChangeLog"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.iss.net/security_center/static/9786.php"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5404"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.inter7.com/qmailadmin/ChangeLog"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.iss.net/security_center/static/9786.php"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit",
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.securityfocus.com/bid/5404"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2006-1141 (GCVE-0-2006-1141)

Vulnerability from cvelistv5 – Published: 2006-03-10 11:00 – Updated: 2024-08-07 17:03
VLAI?
Summary
Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://sourceforge.net/project/shownotes.php?grou… x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
http://security.gentoo.org/glsa/glsa-200611-15.xml vendor-advisoryx_refsource_GENTOO
http://www.osvdb.org/23705 vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/23019 third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19262 third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/16994 vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2006/0852 vdb-entryx_refsource_VUPEN
http://cvs.sourceforge.net/viewcvs.py/qmailadmin/… x_refsource_MISC
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T17:03:28.262Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
          },
          {
            "name": "qmialadmin-qmailadmin-bo(25065)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
          },
          {
            "name": "GLSA-200611-15",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
          },
          {
            "name": "23705",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/23705"
          },
          {
            "name": "23019",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23019"
          },
          {
            "name": "19262",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19262"
          },
          {
            "name": "16994",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/16994"
          },
          {
            "name": "ADV-2006-0852",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/0852"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-02-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-19T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
        },
        {
          "name": "qmialadmin-qmailadmin-bo(25065)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
        },
        {
          "name": "GLSA-200611-15",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
        },
        {
          "name": "23705",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/23705"
        },
        {
          "name": "23019",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23019"
        },
        {
          "name": "19262",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19262"
        },
        {
          "name": "16994",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/16994"
        },
        {
          "name": "ADV-2006-0852",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/0852"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-1141",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211",
              "refsource": "CONFIRM",
              "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
            },
            {
              "name": "qmialadmin-qmailadmin-bo(25065)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
            },
            {
              "name": "GLSA-200611-15",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
            },
            {
              "name": "23705",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/23705"
            },
            {
              "name": "23019",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23019"
            },
            {
              "name": "19262",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19262"
            },
            {
              "name": "16994",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/16994"
            },
            {
              "name": "ADV-2006-0852",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/0852"
            },
            {
              "name": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11",
              "refsource": "MISC",
              "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-1141",
    "datePublished": "2006-03-10T11:00:00",
    "dateReserved": "2006-03-10T00:00:00",
    "dateUpdated": "2024-08-07T17:03:28.262Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-1414 (GCVE-0-2002-1414)

Vulnerability from cvelistv5 – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:26:28.338Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "qmailadmin-templatedir-bo(9786)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/9786.php"
          },
          {
            "name": "20020724 Re: qmailadmin SUID buffer overflow",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
          },
          {
            "name": "20020806 qmailadmin SUID buffer overflow",
            "tags": [
              "mailing-list",
              "x_refsource_VULN-DEV",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
          },
          {
            "name": "5404",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5404"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.inter7.com/qmailadmin/ChangeLog"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-08-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2003-03-21T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "qmailadmin-templatedir-bo(9786)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/9786.php"
        },
        {
          "name": "20020724 Re: qmailadmin SUID buffer overflow",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
        },
        {
          "name": "20020806 qmailadmin SUID buffer overflow",
          "tags": [
            "mailing-list",
            "x_refsource_VULN-DEV"
          ],
          "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
        },
        {
          "name": "5404",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5404"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.inter7.com/qmailadmin/ChangeLog"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1414",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "qmailadmin-templatedir-bo(9786)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/9786.php"
            },
            {
              "name": "20020724 Re: qmailadmin SUID buffer overflow",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
            },
            {
              "name": "20020806 qmailadmin SUID buffer overflow",
              "refsource": "VULN-DEV",
              "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
            },
            {
              "name": "5404",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5404"
            },
            {
              "name": "http://www.inter7.com/qmailadmin/ChangeLog",
              "refsource": "CONFIRM",
              "url": "http://www.inter7.com/qmailadmin/ChangeLog"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1414",
    "datePublished": "2004-09-01T04:00:00",
    "dateReserved": "2003-02-05T00:00:00",
    "dateUpdated": "2024-08-08T03:26:28.338Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2006-1141 (GCVE-0-2006-1141)

Vulnerability from nvd – Published: 2006-03-10 11:00 – Updated: 2024-08-07 17:03
VLAI?
Summary
Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://sourceforge.net/project/shownotes.php?grou… x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
http://security.gentoo.org/glsa/glsa-200611-15.xml vendor-advisoryx_refsource_GENTOO
http://www.osvdb.org/23705 vdb-entryx_refsource_OSVDB
http://secunia.com/advisories/23019 third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/19262 third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/16994 vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2006/0852 vdb-entryx_refsource_VUPEN
http://cvs.sourceforge.net/viewcvs.py/qmailadmin/… x_refsource_MISC
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T17:03:28.262Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
          },
          {
            "name": "qmialadmin-qmailadmin-bo(25065)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
          },
          {
            "name": "GLSA-200611-15",
            "tags": [
              "vendor-advisory",
              "x_refsource_GENTOO",
              "x_transferred"
            ],
            "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
          },
          {
            "name": "23705",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/23705"
          },
          {
            "name": "23019",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23019"
          },
          {
            "name": "19262",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/19262"
          },
          {
            "name": "16994",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/16994"
          },
          {
            "name": "ADV-2006-0852",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/0852"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-02-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-19T15:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
        },
        {
          "name": "qmialadmin-qmailadmin-bo(25065)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
        },
        {
          "name": "GLSA-200611-15",
          "tags": [
            "vendor-advisory",
            "x_refsource_GENTOO"
          ],
          "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
        },
        {
          "name": "23705",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/23705"
        },
        {
          "name": "23019",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23019"
        },
        {
          "name": "19262",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/19262"
        },
        {
          "name": "16994",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/16994"
        },
        {
          "name": "ADV-2006-0852",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/0852"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-1141",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in qmailadmin.c in QmailAdmin before 1.2.10 allows remote attackers to execute arbitrary code via a long PATH_INFO environment variable."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211",
              "refsource": "CONFIRM",
              "url": "http://sourceforge.net/project/shownotes.php?group_id=6691\u0026release_id=395211"
            },
            {
              "name": "qmialadmin-qmailadmin-bo(25065)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/25065"
            },
            {
              "name": "GLSA-200611-15",
              "refsource": "GENTOO",
              "url": "http://security.gentoo.org/glsa/glsa-200611-15.xml"
            },
            {
              "name": "23705",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/23705"
            },
            {
              "name": "23019",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23019"
            },
            {
              "name": "19262",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/19262"
            },
            {
              "name": "16994",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/16994"
            },
            {
              "name": "ADV-2006-0852",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/0852"
            },
            {
              "name": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11",
              "refsource": "MISC",
              "url": "http://cvs.sourceforge.net/viewcvs.py/qmailadmin/qmailadmin/qmailadmin.c?r1=1.6.2.10\u0026r2=1.6.2.11"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-1141",
    "datePublished": "2006-03-10T11:00:00",
    "dateReserved": "2006-03-10T00:00:00",
    "dateUpdated": "2024-08-07T17:03:28.262Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2002-1414 (GCVE-0-2002-1414)

Vulnerability from nvd – Published: 2004-09-01 04:00 – Updated: 2024-08-08 03:26
VLAI?
Summary
Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T03:26:28.338Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "qmailadmin-templatedir-bo(9786)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "http://www.iss.net/security_center/static/9786.php"
          },
          {
            "name": "20020724 Re: qmailadmin SUID buffer overflow",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
          },
          {
            "name": "20020806 qmailadmin SUID buffer overflow",
            "tags": [
              "mailing-list",
              "x_refsource_VULN-DEV",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
          },
          {
            "name": "5404",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/5404"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.inter7.com/qmailadmin/ChangeLog"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2002-08-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2003-03-21T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "qmailadmin-templatedir-bo(9786)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "http://www.iss.net/security_center/static/9786.php"
        },
        {
          "name": "20020724 Re: qmailadmin SUID buffer overflow",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
        },
        {
          "name": "20020806 qmailadmin SUID buffer overflow",
          "tags": [
            "mailing-list",
            "x_refsource_VULN-DEV"
          ],
          "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
        },
        {
          "name": "5404",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/5404"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.inter7.com/qmailadmin/ChangeLog"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2002-1414",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in qmailadmin allows local users to gain privileges via a long QMAILADMIN_TEMPLATEDIR environment variable."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "qmailadmin-templatedir-bo(9786)",
              "refsource": "XF",
              "url": "http://www.iss.net/security_center/static/9786.php"
            },
            {
              "name": "20020724 Re: qmailadmin SUID buffer overflow",
              "refsource": "BUGTRAQ",
              "url": "http://archives.neohapsis.com/archives/bugtraq/2002-08/0016.html"
            },
            {
              "name": "20020806 qmailadmin SUID buffer overflow",
              "refsource": "VULN-DEV",
              "url": "http://marc.info/?l=vuln-dev\u0026m=102859603029424\u0026w=2"
            },
            {
              "name": "5404",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/5404"
            },
            {
              "name": "http://www.inter7.com/qmailadmin/ChangeLog",
              "refsource": "CONFIRM",
              "url": "http://www.inter7.com/qmailadmin/ChangeLog"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2002-1414",
    "datePublished": "2004-09-01T04:00:00",
    "dateReserved": "2003-02-05T00:00:00",
    "dateUpdated": "2024-08-08T03:26:28.338Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}