CVE-2016-7844
MEDIUMGigaCC OFFICE < 2.3 - Remote Code Execution via Mail Template
Title source: llmDescription
GigaCC OFFICE ver.2.3 and earlier allows remote attackers to execute arbitrary OS commands via specially crafted mail template.
References (3)
Core 3
Core References
Various Sources x_refsource_misc
https://asp.gigacc.com/user/publicurl/view.do%3Bjsessionid=28438FE401A764B7CEDB3664AB2AC67C.ap04?job=view&direct=true&TI=9l1sf6jfp0bafkv9bh2e5fs43k&ID=9qbnmp2qetc5u9vc8crqbl804s
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/95680
Third Party Advisory, VDB Entry x_refsource_misc
https://jvn.jp/en/vu/JVNVU91417143/index.html
Scores
CVSS v3
5.5
EPSS
0.0086
EPSS Percentile
54.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L
Details
CWE
CWE-78
Status
published
Products (2)
gigaccsecure/gigacc_office
< 2.3
WAM!NET Japan K.K./GigaCC OFFICE
ver.2.3 and earlier
Published
Aug 02, 2017
Tracked Since
Feb 18, 2026