|
|
|||
| Rule General Information |
|---|
| Release Date: | 2017-03-22 | |
| Rule Name: | WEB-OTHER PineApp Mail-SeCure livelog.html Arbitrary Command Execution -3.x (OSVDB-95779) | |
| Severity: | ||
| CVE ID: | ||
| Rule Protection Details |
|---|
| Description: | A command injection vulnerability was found on PineApp Mail-SeCure 3.70. The vulnerability exists on the livelog.html component, due to the insecure usage of the shell_exec() php function. | |
| Impact: | Remote code execution | |
| Affected OS: | Other Unix, Linux | |
| Reference: | OSVDB:95779 |
|
| Solutions |
|---|
| Update vendor's patch. |