What is CVE-2014-7844?

CVE-2014-7844 is a vulnerability in BSD mailx 8.1.2 and earlier that allows remote attackers to execute arbitrary commands via a crafted email address.

What is the severity of CVE-2014-7844?

The severity of CVE-2014-7844 is high, with a severity value of 7.8.

Which software versions are affected by CVE-2014-7844?

Redhat Enterprise Linux Desktop 6.0, Redhat Enterprise Linux Desktop 7.0, Redhat Enterprise Linux Server 6.0, Redhat Enterprise Linux Server 7.0, Redhat Enterprise Linux Server Aus 6.6, Redhat Enterprise Linux Server Aus 7.3, Redhat Enterprise Linux Server Aus 7.4, Redhat Enterprise Linux Server Aus 7.6, Redhat Enterprise Linux Server Aus 7.7, Redhat Enterprise Linux Server Eus 6.6, Redhat Enterprise Linux Server Eus 7.2, Redhat Enterprise Linux Server Eus 7.3, Redhat Enterprise Linux Server Eus 7.4, Redhat Enterprise Linux Server Eus 7.5, Redhat Enterprise Linux Server Eus 7.6, Redhat Enterprise Linux Server Eus 7.7, Redhat Enterprise Linux Server Tus 6.6, Redhat Enterprise Linux Server Tus 7.3, Redhat Enterprise Linux Server Tus 7.6, Redhat Enterprise Linux Server Tus 7.7, Redhat Enterprise Linux Workstation 6.0, Redhat Enterprise Linux Workstation 7.0, Debian Debian Linux 7.0, Bsd Mailx Project Bsd Mailx 8.1.2.

How can I fix CVE-2014-7844?

Apply the necessary security patches provided by the software vendors.

Where can I find more information about CVE-2014-7844?

You can find more information about CVE-2014-7844 at the following references: http://linux.oracle.com/errata/ELSA-2014-1999.html, http://rhn.redhat.com/errata/RHSA-2014-1999.html, http://seclists.org/oss-sec/2014/q4/1066.

Vulnerability/
CVE-2014-7844

high

7.8

CWE

14/1/2020

13/2/2023

CVE-2014-7844

First published: Tue Jan 14 2020(Updated: )

BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via a crafted email address.

Credit: secalert@redhat.com

Affected Software	Affected Version	How to fix
Redhat Enterprise Linux Desktop	=6.0
Redhat Enterprise Linux Desktop	=7.0
Redhat Enterprise Linux Server	=6.0
Redhat Enterprise Linux Server	=7.0
Redhat Enterprise Linux Server Aus	=6.6
Redhat Enterprise Linux Server Aus	=7.3
Redhat Enterprise Linux Server Aus	=7.4
Redhat Enterprise Linux Server Aus	=7.6
Redhat Enterprise Linux Server Aus	=7.7
Redhat Enterprise Linux Server Eus	=6.6
Redhat Enterprise Linux Server Eus	=7.2
Redhat Enterprise Linux Server Eus	=7.3
Redhat Enterprise Linux Server Eus	=7.4
Redhat Enterprise Linux Server Eus	=7.5
Redhat Enterprise Linux Server Eus	=7.6
Redhat Enterprise Linux Server Eus	=7.7
Redhat Enterprise Linux Server Tus	=6.6
Redhat Enterprise Linux Server Tus	=7.3
Redhat Enterprise Linux Server Tus	=7.6
Redhat Enterprise Linux Server Tus	=7.7
Redhat Enterprise Linux Workstation	=6.0
Redhat Enterprise Linux Workstation	=7.0
Debian Debian Linux	=7.0
Bsd Mailx Project Bsd Mailx	=8.1.2

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is CVE-2014-7844?
CVE-2014-7844 is a vulnerability in BSD mailx 8.1.2 and earlier that allows remote attackers to execute arbitrary commands via a crafted email address.
What is the severity of CVE-2014-7844?
The severity of CVE-2014-7844 is high, with a severity value of 7.8.
Which software versions are affected by CVE-2014-7844?
Redhat Enterprise Linux Desktop 6.0, Redhat Enterprise Linux Desktop 7.0, Redhat Enterprise Linux Server 6.0, Redhat Enterprise Linux Server 7.0, Redhat Enterprise Linux Server Aus 6.6, Redhat Enterprise Linux Server Aus 7.3, Redhat Enterprise Linux Server Aus 7.4, Redhat Enterprise Linux Server Aus 7.6, Redhat Enterprise Linux Server Aus 7.7, Redhat Enterprise Linux Server Eus 6.6, Redhat Enterprise Linux Server Eus 7.2, Redhat Enterprise Linux Server Eus 7.3, Redhat Enterprise Linux Server Eus 7.4, Redhat Enterprise Linux Server Eus 7.5, Redhat Enterprise Linux Server Eus 7.6, Redhat Enterprise Linux Server Eus 7.7, Redhat Enterprise Linux Server Tus 6.6, Redhat Enterprise Linux Server Tus 7.3, Redhat Enterprise Linux Server Tus 7.6, Redhat Enterprise Linux Server Tus 7.7, Redhat Enterprise Linux Workstation 6.0, Redhat Enterprise Linux Workstation 7.0, Debian Debian Linux 7.0, Bsd Mailx Project Bsd Mailx 8.1.2.
How can I fix CVE-2014-7844?
Apply the necessary security patches provided by the software vendors.
Where can I find more information about CVE-2014-7844?
You can find more information about CVE-2014-7844 at the following references: http://linux.oracle.com/errata/ELSA-2014-1999.html, http://rhn.redhat.com/errata/RHSA-2014-1999.html, http://seclists.org/oss-sec/2014/q4/1066.

collector/nvd-index
agent/weakness
agent/type
vendor/redhat
canonical/redhat enterprise linux desktop
version/redhat enterprise linux desktop/6.0
version/redhat enterprise linux desktop/7.0
canonical/redhat enterprise linux server
version/redhat enterprise linux server/6.0
version/redhat enterprise linux server/7.0
canonical/redhat enterprise linux server aus
version/redhat enterprise linux server aus/6.6
version/redhat enterprise linux server aus/7.3
version/redhat enterprise linux server aus/7.4
version/redhat enterprise linux server aus/7.6
version/redhat enterprise linux server aus/7.7
canonical/redhat enterprise linux server eus
version/redhat enterprise linux server eus/6.6
version/redhat enterprise linux server eus/7.2
version/redhat enterprise linux server eus/7.3
version/redhat enterprise linux server eus/7.4
version/redhat enterprise linux server eus/7.5
version/redhat enterprise linux server eus/7.6
version/redhat enterprise linux server eus/7.7
canonical/redhat enterprise linux server tus
version/redhat enterprise linux server tus/6.6
version/redhat enterprise linux server tus/7.3
version/redhat enterprise linux server tus/7.6
version/redhat enterprise linux server tus/7.7
canonical/redhat enterprise linux workstation
version/redhat enterprise linux workstation/6.0
version/redhat enterprise linux workstation/7.0
vendor/debian
canonical/debian debian linux
version/debian debian linux/7.0
vendor/bsd mailx project
canonical/bsd mailx project bsd mailx
version/bsd mailx project bsd mailx/8.1.2