VULHUB ™

Open WebMail is an open-source web mail package written in Perl. Several components are designed to run with root privileges through the use of suidperl. A vulnerability has been reported in Open WebMail. Attackers with the ability to upload files to a server may cause commands to be executed with root privileges. This is due to a lack of input validation in the 'openwebmail-shared.pl' script.

Open WebMail is an open-source web mail package written in Perl. Several components are designed to run with root privileges through the use of suidperl. A vulnerability has been reported in Open WebMail. Attackers with the ability to upload files to a server may cause commands to be executed with root privileges. This is due to a lack of input validation in the 'openwebmail-shared.pl' script.