#VU34207 Deserialization of Untrusted Data in SquirrelMail - CVE-2020-14932

Cybersecurity Help s.r.o.

Published: 2020-06-20 | Updated: 2020-08-08

Vulnerability identifier: #VU34207

Vulnerability risk: High

CVSSv4.0: 8.1 [CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber]

CVE-ID: CVE-2020-14932

CWE-ID: CWE-502

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
SquirrelMail
Web applications / Webmail solutions

Vendor: SquirrelMail Development Team

Description

The vulnerability allows a remote non-authenticated attacker to execute arbitrary code.

compose.php in SquirrelMail 1.4.22 calls unserialize for the $mailtodata value, which originates from an HTTP GET request. This is related to mailto.php.

Mitigation
Install update from vendor's website.

Vulnerable software versions

SquirrelMail: 1.4.22

External links
https://www.openwall.com/lists/oss-security/2020/06/20/1

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Multiple vulnerabilities in SquirrelMail