CVE-2012-1916

@Mail WebMail Client in AtMail Open-Source before 1.05 allows remote attackers to execute arbitrary code via an e-mail attachment with an executable extension, leading to the creation of an executable file under tmp/.

Date published : 2012-03-27

http://www.kb.cert.org/vuls/id/743555

http://atmail.org/download/atmailopen.tgz