Command Execution Vulnerability in McAfee Email Gateway
CVE-2013-7103

Currently unrated

Key Information:

Vendor: Mcafee
Status: Email Gateway
Vendor: CVE Published:; 14 December 2013

Summary

A vulnerability in McAfee Email Gateway 7.6 allows remote authenticated administrators to execute arbitrary commands through the manipulation of shell metacharacters in specific XML attributes. This flaw can lead to unauthorized command execution, which poses significant risks, especially when combined with other vulnerabilities. It is crucial for organizations to mitigate such risks by applying necessary patches and monitoring systems for potential exploitation.

References

http://packetstormsecurity.com/files/124277/McAfee-Email-...

x_refsource_MISC

http://osvdb.org/100581

vdb-entryx_refsource_OSVDB

http://www.securityfocus.com/bid/64150

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 14, 2013
Vulnerability Reserved
Dec 14, 2013