This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Bsd Mailx Project First view 2014-12-24
Product Bsd Mailx Last view 2020-01-14
Version 8.1.2 Type Application
Update *  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware *  
Other *  
 
CPE Product cpe:2.3:a:bsd_mailx_project:bsd_mailx

Activity : Overall

Related : CVE

  Date Alert Description
7.8 2020-01-14 CVE-2014-7844

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.

7.5 2014-12-24 CVE-2004-2771

The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in an email address.

CWE : Common Weakness Enumeration

%idName
50% (1) CWE-74 Failure to Sanitize Data into a Different Plane ('Injection')
50% (1) CWE-20 Improper Input Validation

Information Assurance Vulnerability Management (IAVM)

id Description
2015-A-0199 Multiple Vulnerabilities in Apple Mac OS X
Severity: Category I - VMSKEY: V0061337

Nessus® Vulnerability Scanner

id Description
2018-04-10 Name: The remote Gentoo host is missing one or more security-related patches.
File: gentoo_GLSA-201804-06.nasl - Type: ACT_GATHER_INFO
2017-04-07 Name: The remote device is missing a vendor-supplied security patch.
File: f5_bigip_SOL16945.nasl - Type: ACT_GATHER_INFO
2016-03-03 Name: The remote Slackware host is missing a security update.
File: Slackware_SSA_2016-062-01.nasl - Type: ACT_GATHER_INFO
2015-08-17 Name: The remote host is missing a Mac OS X update that fixes multiple security vul...
File: macosx_10_10_5.nasl - Type: ACT_GATHER_INFO
2015-03-26 Name: The remote Debian host is missing a security update.
File: debian_DLA-114.nasl - Type: ACT_GATHER_INFO
2015-03-26 Name: The remote Debian host is missing a security update.
File: debian_DLA-113.nasl - Type: ACT_GATHER_INFO
2015-01-09 Name: The remote Mandriva Linux host is missing a security update.
File: mandriva_MDVSA-2015-011.nasl - Type: ACT_GATHER_INFO
2015-01-09 Name: The remote Amazon Linux AMI host is missing a security update.
File: ala_ALAS-2015-467.nasl - Type: ACT_GATHER_INFO
2015-01-08 Name: The remote Ubuntu host is missing a security-related patch.
File: ubuntu_USN-2455-1.nasl - Type: ACT_GATHER_INFO
2015-01-05 Name: The remote Fedora host is missing a security update.
File: fedora_2014-17245.nasl - Type: ACT_GATHER_INFO
2015-01-05 Name: The remote Fedora host is missing a security update.
File: fedora_2014-17277.nasl - Type: ACT_GATHER_INFO
2015-01-05 Name: The remote Fedora host is missing a security update.
File: fedora_2014-17243.nasl - Type: ACT_GATHER_INFO
2014-12-29 Name: The remote OracleVM host is missing a security update.
File: oraclevm_OVMSA-2014-0086.nasl - Type: ACT_GATHER_INFO
2014-12-29 Name: The remote openSUSE host is missing a security update.
File: openSUSE-2014-812.nasl - Type: ACT_GATHER_INFO
2014-12-26 Name: The remote SuSE 11 host is missing a security update.
File: suse_11_mailx-141215.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote CentOS host is missing a security update.
File: centos_RHSA-2014-1999.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote Scientific Linux host is missing one or more security updates.
File: sl_20141216_mailx_on_SL6_x.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote Red Hat host is missing one or more security updates.
File: redhat-RHSA-2014-1999.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote Oracle Linux host is missing a security update.
File: oraclelinux_ELSA-2014-1999.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3105.nasl - Type: ACT_GATHER_INFO
2014-12-17 Name: The remote Debian host is missing a security-related update.
File: debian_DSA-3104.nasl - Type: ACT_GATHER_INFO