What is CVE-2013-6829?

CVE-2013-6829 is a vulnerability in Pineapp Mail-secure, classified under Code Injection. Published 2013-11-20.

Is CVE-2013-6829 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

RCE in Pineapp Mail-secure

CVE-2013-6829

admin/confnetworking.html in PineApp Mail-SeCure allows remote attackers to execute arbitrary commands via shell metacharacters in the pinghost parameter during a ping operation.

Vulnerability class: RCE (Remote Code Execution)

EPSS: 0.719 (98.8th percentile) — read the EPSS interpretation.

Affected products

Pineapp Mail-secure
N/a — versions n/a

Weakness classification (CWE)

CWE-94 — Code Injection

Public proof-of-concept exploits

rapid7/metasploit-framework

References

20131119 pineapp mailsecure pwnage (mailing-list, x_refsource_FULLDISC)

Frequently asked questions

What is CVE-2013-6829?: CVE-2013-6829 is a vulnerability in Pineapp Mail-secure, classified under Code Injection. Published 2013-11-20.
Is CVE-2013-6829 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.