CVE-2007-4560

EPSS 88.3%

Published: 8/28/2007Modified: 4/28/2026

Description

clamav-milter in ClamAV before 0.91.2, when run in black hole mode, allows remote attackers to execute arbitrary commands via shell metacharacters that are used in a certain popen call, involving the "recipient field of sendmail."

Affected packages (1)

Debian/clamavfrom 0, < 0.91.2-1~volatile1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2007-4560