Explore top 10 tips to secure your open-source projects now. Read More
×Gentoo Linux Security Advisory GLSA 200611-15
https://security.gentoo.org/
Severity: High
Title: qmailAdmin: Buffer overflow
Date: November 21, 2006
Bugs: #153896
ID: 200611-15
Synopsis
=======
qmailAdmin is vulnerable to a buffer overflow that could lead to the
remote execution of arbitrary code.
Background
=========
qmailAdmin is a free software package that provides a web interface for
managing a qmail system with virtual domains.
Affected packages
================
-------------------------------------------------------------------
Package / Vulnerable / Unaffected
-------------------------------------------------------------------
1 net-mail/qmailadmin < 1.2.10 >= 1.2.10
==========
qmailAdmin fails to properly handle the "PATH_INFO" variable in
qmailadmin.c. The PATH_INFO is a standard CGI environment variable...
style>.gentoo_availability{display:block;}
Get the latest Linux and open source security news straight to your inbox.