https://www.exploit-db.com/exploits/25817
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200506-104

jamchenJamMail1.8的jammail.pl允许远程攻击者借助mail参数中的shell元字符执行任意指令。

source: http://www.securityfocus.com/bid/13937/info

JamMail is prone to a remote arbitrary command execution vulnerability.

This vulnerability may allow an attacker to supply arbitrary commands through the 'jammail.pl' script.

This can lead to various attacks including unauthorized access to an affected computer.

JamMail 1.8 is affected by this issue. 

http://www.example.com/cgi-bin/jammail.pl?job=showoldmail&mail=|command|

来源:SECTRACK
名称:1014175
链接:http://securitytracker.com/id?1014175
来源:BID
名称:13937
链接:http://www.securityfocus.com/bid/13937