Unrated severityNVD Advisory· Published Jan 20, 2004· Updated Jun 16, 2026

CVE-2003-0990

Description

The parseAddress code in (1) SquirrelMail 1.4.0 and (2) GPG Plugin 1.1 allows remote attackers to execute commands via shell metacharacters in the "To:" field.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

SquirrelMail/Squirrelmailinferred2 versions
= 1.4.0+ 1 more
- (no CPE)range: = 1.4.0
- (no CPE)range: <=1.4.0
SquirrelMail/Gpg Pluginllm-fuzzy
Range: <=1.1

Patches

Vulnerability mechanics

References

www.securityfocus.com/archive/1/348366nvdExploitVendor Advisory
www.securityfocus.com/bid/9296nvdVendor Advisory
marc.infonvd
www.bugtraq.org/advisories/_BSSADV-0001.txtnvd
exchange.xforce.ibmcloud.com/vulnerabilities/14079nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.023
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000