Vulnerability Description
Unspecified vulnerability in CGI RESCUE FORM2MAIL before 1.42 allows remote attackers to send email to arbitrary recipients via a web form.
CVSS Score
5.0
MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cgi Rescue | Form2Mail | <= 1.41 |
References
- http://jvn.jp/en/jp/JVN76370393/index.htmlPatch
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000023.html
- http://osvdb.org/54097Patch
- http://secunia.com/advisories/34869Vendor Advisory
- http://www.rescue.ne.jp/whatsnew/blog.cgi/permalink/20081213132937Vendor Advisory
- http://jvn.jp/en/jp/JVN76370393/index.htmlPatch
- http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000023.html
- http://osvdb.org/54097Patch
- http://secunia.com/advisories/34869Vendor Advisory
- http://www.rescue.ne.jp/whatsnew/blog.cgi/permalink/20081213132937Vendor Advisory
FAQ
What is CVE-2009-1590?
CVE-2009-1590 is a vulnerability with a CVSS score of 5.0 (MEDIUM). Unspecified vulnerability in CGI RESCUE FORM2MAIL before 1.42 allows remote attackers to send email to arbitrary recipients via a web form.
How severe is CVE-2009-1590?
CVE-2009-1590 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2009-1590?
Check the references section above for vendor advisories and patch information. Affected products include: Cgi Rescue Form2Mail.