CVE-2004-2771
Published: 24 December 2014
The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.
Priority
Status
| Package | Release | Status |
|---|---|---|
|
bsd-mailx Launchpad, Ubuntu, Debian |
lucid |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
| precise |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| trusty |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| upstream |
Needs triage
|
|
| utopic |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| vivid |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| wily |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| xenial |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| yakkety |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
| zesty |
Not vulnerable
(8.1.2-0.20040524cvs-2)
|
|
|
heirloom-mailx Launchpad, Ubuntu, Debian |
lucid |
Ignored
(end of life)
|
| precise |
Ignored
(end of life)
|
|
| trusty |
Released
(12.5-2+deb7u1build0.14.04.1)
|
|
| upstream |
Needs triage
|
|
| utopic |
Released
(12.5-2+deb7u1build0.14.10.1)
|
|
| vivid |
Not vulnerable
(12.5-3.1)
|
|
| wily |
Not vulnerable
(12.5-3.1)
|
|
| xenial |
Does not exist
|
|
| yakkety |
Does not exist
|
|
| zesty |
Does not exist
|