VYPR
Unrated severityNVD Advisory· Published May 4, 2004· Updated Jun 16, 2026

CVE-2004-1993

CVE-2004-1993

Description

The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute arbitrary commands via shell metacharacters such as "`" (backticks) in the password.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:omail:omail_webmail:0.97.3:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:omail:omail_webmail:0.97.3:*:*:*:*:*:*:*
    • cpe:2.3:a:omail:omail_webmail:0.98.3:*:*:*:*:*:*:*
    • cpe:2.3:a:omail:omail_webmail:0.98.5:*:*:*:*:*:*:*
    • (no CPE)range: = 0.98.5

Patches

Vulnerability mechanics

References

4

News mentions

0

No linked articles in our index yet.