CVE-2006-5449

procmail in Ingo H3 before 1.1.2 Horde module allows remote authenticated users to execute arbitrary commands via shell metacharacters in the mailbox destination of a filter rule.

Date published : 2006-10-23

http://www.securityfocus.com/bid/20637

http://bugs.horde.org/ticket/?Horde=6ed1a009f3396864553976a45948339e&id=4513