Lucene search
MitreCVE-2007-1081HistoryFeb 22, 2007 - 11:28 p.m.
CVE-2007-1081
2007-02-2223:28:00
mitre
web.nvd.nist.gov
34
cve-2007-1081
typo3
email injection
class.t3lib_formmail.php
security vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.005
Percentile
77.5%
The start function in class.t3lib_formmail.php in TYPO3 before 4.0.5, 4.1beta, and 4.1RC1 allows attackers to inject arbitrary email headers via unknown vectors. NOTE: some details were obtained from third party information.
Affected configurations
Node
typo3typo3Range≤4.0.4
ORtypo3typo3Range≤4.1beta
ORtypo3typo3Range≤4.1rc1
Related
cvelist
cvelist
CVE-2007-1081
2007-02-22 23:00:00
openvas
openvas
FreeBSD Ports: typo3
2008-09-04 00:00:00
TYPO3 Mail Header Injection Vulnerability
2013-12-23 00:00:00
FreeBSD Ports: typo3
2008-09-04 00:00:00
freebsd
freebsd
typo3 -- email header injection
2007-02-21 00:00:00
nvd
nvd
CVE-2007-1081
2007-02-22 23:28:00
prion
prion
Information disclosure
2007-02-22 23:28:00
ubuntucve
ubuntucve
CVE-2007-1081
2007-02-22 00:00:00
nessus
nessus
securityvulns
securityvulns
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.4
Confidence
Low
EPSS
0.005
Percentile
77.5%
Related for CVE-2007-1081