CVE-2011-1904
Proofpoint Messaging Security Gateway < 6.2.0.263:6.2.0.237 and Protection Server 5.5.3-6.2.0 - OS Command Injection
Title source: llmDescription
An unspecified function in the web interface in Proofpoint Messaging Security Gateway 6.2.0.263:6.2.0.237 and earlier in Proofpoint Protection Server 5.5.3, 5.5.4, 5.5.5, 6.0.2, 6.1.1, and 6.2.0 allows remote attackers to execute arbitrary commands via unknown vectors, related to a "command injection" issue.
References (3)
Core 3
Core References
Various Sources x_refsource_misc
https://support.proofpoint.com/article.cgi?article_id=338413
US Government Resource third-party-advisory
x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/790980
Various Sources x_refsource_misc
http://www.clearskies.net/documents/css-advisory-css1105-proofpoint.php
Scores
EPSS
0.0236
EPSS Percentile
81.7%
Details
CWE
CWE-78
Status
published
Products (7)
proofpoint/messaging_security_gateway
< 6.2.0.263\:6.2.0.237
proofpoint/protection_server
5.5.3
proofpoint/protection_server
5.5.4
proofpoint/protection_server
5.5.5
proofpoint/protection_server
6.0.2
proofpoint/protection_server
6.1.1
proofpoint/protection_server
6.2.0
Published
May 05, 2011
Tracked Since
Feb 18, 2026