Vulnerability Summary The following report describes a remote code execution vulnerability found in ZendMail. The vulnerability allows an attacker injecting additional parameters to the sendmail binary via the From address. Credit An independent security researcher Dawid Golunski (https://legalhackers.com/) has reported this vulnerability to Beyond Security’s SecuriTeam Secure Disclosure program Vulnerability Details “Zend\Mail provides generalized functionality … Continue reading SSD Advisory – ZendMail Remote Code Execution Vulnerability →
from SSD Advisory – ZendMail Remote Code Execution Vulnerability
No comments:
Post a Comment