Oval Definition:	oval:com.ubuntu.disco:def:2016100330000000
Revision Date: 2016-12-30 Version: 1 Title: CVE-2016-10033 on Ubuntu 19.04 (disco) - medium. Description: The mailSend function in the isMail transport in PHPMailer before 5.2.18 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a \" (backslash double quote) in a crafted Sender property. Family: unix Class: vulnerability Status: Reference(s): CVE-2016-10033 Platform(s): Ubuntu 19.04 Product(s): Definition Synopsis Ubuntu 19.04 (disco) is installed. AND libphp-phpmailer package in disco, is related to the CVE in some way and has been fixed (note: '5.2.14+dfsg-2.1').
BACK