CGIscript.net csMailto.cgi program allows remote attackers to use csMailto as a "spam proxy" and send mail to arbitrary users via modified (1) form-to, (2) form-from, and (3) form-results parameters.
References
Link | Resource |
---|---|
http://archives.neohapsis.com/archives/bugtraq/2002-04/0326.html | Exploit Vendor Advisory |
http://www.cgiscript.net/cgi-script/csNews/csNews.cgi?database=cgi.db&command=viewone&id=5 | Vendor Advisory |
http://www.securityfocus.com/bid/4579 | Exploit Vendor Advisory |
Configurations
History
No history.
Information
Published : 2002-08-12 04:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-0751
Mitre link : CVE-2002-0751
CVE.ORG link : CVE-2002-0751
JSON object : View
Products Affected
cgiscript.net
- csmailto
CWE