Lucene search

MitreCVE-2017-9046

HistoryMay 21, 2017 - 2:29 p.m.

CVE-2017-9046

2017-05-2114:29:00

CWE-20

mitre

web.nvd.nist.gov

cve-2017-9046

pegasus mail

pmail

code execution

ssgp.dll

nvd

security vulnerability

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

20.2%

JSON

winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack.

Affected configurations

Nvd

Node

pmailpegasusMatch4.72

VendorProductVersionCPE
pmailpegasus4.72cpe:2.3:a:pmail:pegasus:4.72:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
pmail	pegasus	4.72	cpe:2.3:a:pmail:pegasus:4.72:::::::*

References

packetstormsecurity.com/files/142606/Pegasus-4.72-Build-572-Remote-Code-Execution.html

CVSS2

4.4

Attack Vector

LOCAL

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:M/Au:N/C:P/I:P/A:P

CVSS3

7.3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H

EPSS

0.001

Percentile

20.2%

JSON

Related for CVE-2017-9046