VYPR
Unrated severityNVD Advisory· Published Dec 31, 2004· Updated Jun 16, 2026

CVE-2004-2284

CVE-2004-2284

Description

The read_list_from_file function in vacation.pl for OpenWebmail before 2.32 20040629 allows remote attackers to execute arbitrary commands via shell metacharacters in a filename argument.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

11
  • cpe:2.3:a:open_webmail:open_webmail:1.7:*:*:*:*:*:*:*+ 10 more
    • cpe:2.3:a:open_webmail:open_webmail:1.7:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:1.71:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:1.8:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:1.81:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:1.90:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:2.20:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:2.21:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:2.30:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:2.31:*:*:*:*:*:*:*
    • cpe:2.3:a:open_webmail:open_webmail:2.32:*:*:*:*:*:*:*
    • (no CPE)range: <2.32 20040629

Patches

Vulnerability mechanics

References

6

News mentions

0

No linked articles in our index yet.