CVE-2004-2771

Published: Dec 24, 2014Modified: May 6, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.

Affected (6)

Products: Oracle: Linux · Redhat: Enterprise Linux · Bsd Mailx Project: Bsd Mailx · +1 more

Show all products

Oracle: Linux · Redhat: Enterprise Linux · Bsd Mailx Project: Bsd Mailx · Heirloom: Mailx

1 product

1 product

1 product

1 product

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Oracle Linux	Version 6
Oracle Linux	Version 7

Configuration B

2 vulnerable

Vulnerable Software	Affected Versions
Redhat Enterprise Linux	Version 6.0
Redhat Enterprise Linux	Version 7.0

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Bsd Mailx Project Bsd Mailx	Up to 8.1.2

Configuration D

1 vulnerable

Vulnerable Software	Affected Versions
Heirloom Mailx	Up to 12.5

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (16)

http://linux.oracle.com/errata/ELSA-2014-1999.html

Source: secalert@redhat.com

http://rhn.redhat.com/errata/RHSA-2014-1999.html

Source: secalert@redhat.com

http://seclists.org/oss-sec/2014/q4/1066

Source: secalert@redhat.com

http://secunia.com/advisories/60940

Source: secalert@redhat.com

http://secunia.com/advisories/61585

Source: secalert@redhat.com

http://secunia.com/advisories/61693

Source: secalert@redhat.com

http://www.debian.org/security/2014/dsa-3105

Source: secalert@redhat.com

https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=278748

Source: secalert@redhat.com

Exploit

http://linux.oracle.com/errata/ELSA-2014-1999.html