[31312] in bugtraq


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: Remote Execution of Commands in Omail Webmail 0.98.4 and earlier

daemon@ATHENA.MIT.EDU (Olivier M.)
Thu Aug 21 16:24:48 2003

Message-ID: <20030821112430.L27604@orion.8304.ch>
Date: Thu, 21 Aug 2003 11:24:30 +0200
From: "Olivier M." <qmail@orion.8304.ch>
To: Phillip Whelan <pwhelan@bunkerchile.net>, bugtraq@securityfocus.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
In-Reply-To: <20030819191532.19242.qmail@www.securityfocus.com>; from Phillip Whelan on Tue, Aug 19, 2003 at 07:15:32PM -0000

On Tue, Aug 19, 2003 at 07:15:32PM -0000, Phillip Whelan wrote:
> Product: Omail Webmail
> The flaw occurs in the function checklogin();

thx, version 0.98.5 released today, including your bugfix:
http://prdownloads.sourceforge.net/omail/omail-webmail-0.98.5.tar.gz

> The author was contacted two weeks ago, but did not
> respond.

summertime -> ever heard of holidays... ? :)  

regards,
Olivier
-- 
_________________________________________________________________
 Olivier Mueller - om@8304.ch - PGPkeyID: 0E84D2EA - Switzerland
qmail projects: http://omail.omnis.ch  -  http://webmail.omnis.ch


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[31312] in bugtraq

Re: Remote Execution of Commands in Omail Webmail 0.98.4 and earlier

daemon@ATHENA.MIT.EDU (Olivier M.)Thu Aug 21 16:24:48 2003

daemon@ATHENA.MIT.EDU (Olivier M.)
Thu Aug 21 16:24:48 2003