CVE-2015-7611

Apache James Server 2.3.2, when configured with file-based user repositories, allows attackers to execute arbitrary system commands via unspecified vectors.

Date published : 2016-06-07

http://www.securityfocus.com/archive/1/536575/100/0/threaded

https://blogs.apache.org/james/entry/apache_james_server_2_3