VYPR

Change_passwd plugin

by SquirrelMail

CVEs (2)

  • CVE-2006-0331Jan 21, 2006
    risk 0.03cvss epss 0.01

    Buffer overflow in Change passwd 3.1 (chpasswd) SquirrelMail plugin allows local users to execute arbitrary code via long command line arguments.

  • CVE-2004-0524Aug 6, 2004
    risk 0.03cvss epss 0.05

    Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.