CVE-2007-4560

clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."
Configurations

Configuration 1 (hide)

cpe:2.3:a:clam_anti-virus:clamav:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2007-08-28 01:17

Updated : 2024-02-28 11:01


NVD link : CVE-2007-4560

Mitre link : CVE-2007-4560

CVE.ORG link : CVE-2007-4560


JSON object : View

Products Affected

clam_anti-virus

  • clamav
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')