CVE-2008-5619 (retired)

Priority
Description
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer
before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and
0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to
execute arbitrary code via crafted input that is processed by the
preg_replace function with the eval switch.
Notes
 mdeslaur> moodle recently copied roundcube's html2text due to their copy being
  non-free (1.8.2.dfsg-1)
Package
Upstream:released (1.8.2.dfsg-2)
Package
Upstream:released (0.1.1-9)
Patches:
Debdiff:https://bugs.launchpad.net/ubuntu/+source/roundcube/+bug/316550
More Information

Updated: 2019-03-26 11:46:18 UTC (commit ccdecfcf0fead22bd291e5f4ea745a46872dcb15)