Lucene search
F5F5:K46057232HistoryFeb 14, 2017 - 12:00 a.m.
K46057232 : Swift Mailer vulnerability CVE-2016-10074
2017-02-1400:00:00
my.f5.com
66
Security Advisory Description
The mail transport (aka Swift_Transport_MailTransport) in Swift Mailer before 5.4.5 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a " (backslash double quote) in a crafted e-mail address in the (1) From, (2) ReturnPath, or (3) Sender header. (CVE-2016-10074)
Impact
There is no impact; F5 products are not affected by this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
saint
saint
Swift Mailer PwnScriptum Command Injection
2017-01-17 00:00:00
Swift Mailer PwnScriptum Command Injection
2017-01-17 00:00:00
Swift Mailer PwnScriptum Command Injection
2017-01-17 00:00:00
nessus
nessus
Debian DSA-3769-1 : libphp-swiftmailer - security update
2017-01-23 00:00:00
Debian DLA-792-1 : libphp-swiftmailer security update
2017-01-20 00:00:00
Fedora 25 : php-swiftmailer (2016-f7ef82c1b4)
2017-01-10 00:00:00
osv
osv
libphp-swiftmailer - security update
2017-01-22 00:00:00
libphp-swiftmailer - security update
2017-01-19 00:00:00
Swift Mailer mail transport Command Injection
2022-05-17 00:27:49
openvas
openvas
SwiftMailer RCE Vulnerability
2016-12-29 00:00:00
Fedora Update for php-swiftmailer FEDORA-2016-f7ef82c1b4
2017-01-10 00:00:00
Fedora Update for php-swiftmailer FEDORA-2016-b65e546846
2017-01-10 00:00:00
exploitpack
exploitpack
SwiftMailer 5.4.5-DEV - Remote Code Execution
2016-12-28 00:00:00
PHPMailer 5.2.20 with Exim MTA - Remote Code Execution
2017-06-21 00:00:00
fedora
fedora
[SECURITY] Fedora 24 Update: php-swiftmailer-5.4.5-1.fc24
2017-01-09 01:22:20
[SECURITY] Fedora 25 Update: php-swiftmailer-5.4.5-1.fc25
2017-01-09 00:59:18
cve
cve
CVE-2016-10074
2016-12-30 19:59:00
debian
debian
[SECURITY] [DSA 3769-1] libphp-swiftmailer security update
2017-01-22 10:43:02
[SECURITY] [DSA 3769-1] libphp-swiftmailer security update
2017-01-22 10:43:02
[SECURITY] [DLA 792-1] libphp-swiftmailer security update
2017-01-19 18:51:46
cvelist
cvelist
CVE-2016-10074
2016-12-30 19:00:00
typo3
typo3
Remote Code Execution in third party library swiftmailer
2017-01-03 00:00:00
debiancve
debiancve
CVE-2016-10074
2016-12-30 19:59:00
friendsofphp
friendsofphp
Remote Code Execution when using the mail transport
2016-12-29 10:01:58
github
github
Swift Mailer mail transport Command Injection
2022-05-17 00:27:49
Flow Swift Mailer package Remote code execution
2024-05-17 23:06:50
ubuntucve
ubuntucve
CVE-2016-10074
2016-12-30 00:00:00
packetstorm
packetstorm
SwiftMailer Remote Code Execution
2016-12-29 00:00:00
WordPress Core 4.6 Unauthenticated Remote Code Execution
2017-05-05 00:00:00
SquirrelMail 1.4.22 Remote Code Execution
2017-04-23 00:00:00
prion
prion
Command injection
2016-12-30 19:59:00
nvd
nvd
CVE-2016-10074
2016-12-30 19:59:00
veracode
veracode
Arbitrary Code Execution
2018-05-10 03:25:41
zdt
zdt
SwiftMailer 5.4.5-DEV - Remote Code Execution Exploit
2016-12-29 00:00:00
PHPMailer < 5.2.20 with Exim MTA - Remote Code Execution Exploit
2017-06-22 00:00:00
exploitdb
exploitdb
SwiftMailer < 5.4.5-DEV - Remote Code Execution
2016-12-28 00:00:00
PHPMailer < 5.2.20 / SwiftMailer < 5.4.5-DEV / Zend Framework / zend-mail < 2.4.11 - 'AIO' 'PwnScriptum' Remote Code Execution
2017-01-02 00:00:00
PHPMailer < 5.2.20 with Exim MTA - Remote Code Execution
2017-06-21 00:00:00
seebug
seebug
SwiftMailer <= 5.4.5-DEV Remote Code Execution (CVE-2016-10074)
2016-12-30 00:00:00
WordPress Core 4.6 - Unauthenticated Remote Code Execution
2017-05-04 00:00:00
thn
thn
Critical Updates — RCE Flaws Found in SwiftMailer, PhpMailer and ZendMail
2017-01-02 23:45:00
threatpost
threatpost
