Bugtraq mailing list archives

Re: Remote Execution of Commands in Omail Webmail 0.98.4 and earlier

From: "Olivier M." <qmail () orion 8304 ch>
Date: Thu, 21 Aug 2003 11:24:30 +0200

On Tue, Aug 19, 2003 at 07:15:32PM -0000, Phillip Whelan wrote:

Product: Omail Webmail
The flaw occurs in the function checklogin();


thx, version 0.98.5 released today, including your bugfix:
http://prdownloads.sourceforge.net/omail/omail-webmail-0.98.5.tar.gz

The author was contacted two weeks ago, but did not
respond.


summertime -> ever heard of holidays... ? :)  

regards,
Olivier
-- 
_________________________________________________________________
 Olivier Mueller - om () 8304 ch - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch

Current thread:

Remote Execution of Commands in Omail Webmail 0.98.4 and earlier Phillip Whelan (Aug 19)
- Re: Remote Execution of Commands in Omail Webmail 0.98.4 and earlier Olivier M. (Aug 21)