CVE-2012-1916 Information

Description

@Mail WebMail Client in AtMail Open-Source before 1.05 allows remote attackers to execute arbitrary code via an e-mail attachment with an executable extension leading to the creation of an executable file under tmp/.

Reference

http://atmail.org/download/atmailopen.tgz http://en.securitylab.ru/lab/PT-2011-48 http://secunia.com/advisories/47012 http://www.kb.cert.org/vuls/id/743555