Mandrake Linux Security Advisory : perl-MailTools (MDKSA-2002:076)
High Nessus Plugin ID 13975
SynopsisThe remote Mandrake Linux host is missing a security update.
DescriptionA vulnerability was discovered in Mail::Mailer perl module by the SuSE security team during an audit. The vulnerability allows remote attackers to execute arbitrary commands in certain circumstances due to the usage of mailx as the default mailer, a program that allows commands to be embedded in the mail body.
This module is used by some auto-response programs and spam filters which make use of Mail::Mailer.
SolutionUpdate the affected perl-MailTools package.