Critical severityOSV Advisory· Published Feb 5, 2019· Updated Aug 6, 2024
CVE-2016-1000282
CVE-2016-1000282
Description
Haraka version 2.8.8 and earlier comes with a plugin for processing attachments for zip files. Versions 2.8.8 and earlier can be vulnerable to command injection.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
Harakanpm | < 2.8.9 | 2.8.9 |
Affected products
2Patches
Vulnerability mechanics
References
3- github.com/advisories/GHSA-w5m8-5v9m-xhx5ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2016-1000282ghsaADVISORY
- github.com/outflanknl/Exploits/blob/master/harakiri-CVE-2016-1000282.pyghsax_refsource_MISCWEB
News mentions
0No linked articles in our index yet.