CVE-2013-7103

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email Gateway
Vendor: CVE Published:; 14 December 2013

Summary

McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands via shell metacharacters in the value attribute in a (1) TestFile XML element or the (2) hostname. NOTE: this issue can be combined with CVE-2013-7092 to allow remote attackers to execute commands.

References

http://packetstormsecurity.com/files/124277/McAfee-Email-...

x_refsource_MISC

http://osvdb.org/100581

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/64150

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 14, 2013
Vulnerability Reserved
Dec 14, 2013