CVE-2009-4023

Description

Argument injection vulnerability in the sendmail implementation of the Mail::Send method (Mail/sendmail.php) in the Mail package 1.1.14 for PEAR allows remote attackers to read and write arbitrary files via a crafted $from parameter, a different vector than CVE-2009-4111.

Related Vulnerabilities

platform vulnerability
CVE-2009-4023 php-mail
CVE-2009-4023