SecuritySpace - CVE-2017-7413

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2017-7413

Description: In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition through 5.2.17, OS Command Injection can occur if the attacker is an authenticated Horde Webmail user, has PGP features enabled in their preferences, and attempts to encrypt an email addressed to a maliciously crafted email address.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2017-7413
https://lists.debian.org/debian-lts-announce/2018/06/msg00006.html

CVE ID:	CVE-2017-7413
Description:	In Horde_Crypt before 2.7.6, as used in Horde Groupware Webmail Edition through 5.2.17, OS Command Injection can occur if the attacker is an authenticated Horde Webmail user, has PGP features enabled in their preferences, and attempts to encrypt an email addressed to a maliciously crafted email address.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2017-7413 https://lists.debian.org/debian-lts-announce/2018/06/msg00006.html