CVE-2016-9920

steps/mail/sendmail.inc in Roundcube before 1.1.7 and 1.2.x before 1.2.3, when no SMTP server is configured and the sendmail program is enabled, does not properly restrict the use of custom envelope-from addresses on the sendmail command line, which allows remote authenticated users to execute arbitrary code via a modified HTTP request that sends a crafted e-mail message.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:roundcube:webmail:*:*:*:*:*:*:*:*
cpe:2.3:a:roundcube:webmail:1.2.0:*:*:*:*:*:*:*
cpe:2.3:a:roundcube:webmail:1.2.1:*:*:*:*:*:*:*
cpe:2.3:a:roundcube:webmail:1.2.2:*:*:*:*:*:*:*

History

No history.

Information

Published : 2016-12-08 18:59

Updated : 2024-02-04 19:11


NVD link : CVE-2016-9920

Mitre link : CVE-2016-9920

CVE.ORG link : CVE-2016-9920


JSON object : View

Products Affected

roundcube

  • webmail
CWE
CWE-284

Improper Access Control