Command Injection Vulnerability in Proofpoint Messaging Security Gateway and Protection Server
CVE-2011-1904

Currently unrated

Key Information:

Vendor: Proofpoint
Status: Protection Server; Messaging Security Gateway
Vendor: CVE Published:; 5 May 2011

Summary

A command injection vulnerability exists in the web interface of Proofpoint Messaging Security Gateway and Protection Server. This flaw allows remote attackers to exploit unspecified functions, potentially executing arbitrary commands on the affected systems. The vulnerability impacts several versions of both products, emphasizing the need for vigilance and timely updates. Users are encouraged to apply the necessary patches to safeguard against such risks.

References

https://support.proofpoint.com/article.cgi?article_id=338413

x_refsource_MISC

http://www.kb.cert.org/vuls/id/790980

third-party-advisoryx_refsource_CERT-VN

http://www.clearskies.net/documents/css-advisory-css1105-...

x_refsource_MISC

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
May 5, 2011