Unrated severityNVD Advisory· Published May 4, 2004· Updated Jun 16, 2026
CVE-2004-1993
CVE-2004-1993
Description
The patch to the checklogin function in omail.pl for omail webmail 0.98.5 is incomplete, which allows remote attackers to execute arbitrary commands via shell metacharacters such as "`" (backticks) in the password.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
4cpe:2.3:a:omail:omail_webmail:0.97.3:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:omail:omail_webmail:0.97.3:*:*:*:*:*:*:*
- cpe:2.3:a:omail:omail_webmail:0.98.3:*:*:*:*:*:*:*
- cpe:2.3:a:omail:omail_webmail:0.98.5:*:*:*:*:*:*:*
- (no CPE)range: = 0.98.5
Patches
Vulnerability mechanics
References
4- secunia.com/advisories/9585nvdVendor Advisory
- www.securityfocus.com/bid/10274nvdVendor Advisory
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/12948nvd
News mentions
0No linked articles in our index yet.