Unrated severityNVD Advisory· Published Feb 10, 2006· Updated Jun 16, 2026
CVE-2006-0631
CVE-2006-0631
Description
CRLF injection vulnerability in mailback.pl in Erik C. Thauvin mailback allows remote attackers to use mailback as a "spam proxy" by modifying mail headers, including recipient e-mail addresses, via newline characters in the Subject field.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:erik_c._thauvin:mailback:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:erik_c._thauvin:mailback:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
7- secunia.com/advisories/18748nvdPatchVendor Advisory
- www.osvdb.org/22955nvdPatch
- seclists.org/lists/bugtraq/2006/Feb/0154.htmlnvdExploit
- seclists.org/lists/bugtraq/2006/Feb/0094.htmlnvd
- vc.thauvin.net/cvs/cgi/mailback/mailback.plnvd
- www.vupen.com/english/advisories/2006/0459nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/24540nvd
News mentions
0No linked articles in our index yet.