CVE-2007-1081

Publication date 22 February 2007

Last updated 17 July 2025

Ubuntu priority

Description

The start function in class.t3lib_formmail.php in TYPO3 before 4.0.5, 4.1beta, and 4.1RC1 allows attackers to inject arbitrary email headers via unknown vectors. NOTE: some details were obtained from third party information.

Status

Show unmaintained releases

Package	Ubuntu Release	Status
typo3-src	9.10 karmic	Fixed 4.0.5+debian-1
	9.04 jaunty	Fixed 4.0.5+debian-1
	8.10 intrepid	Fixed 4.0.5+debian-1
	8.04 LTS hardy	Fixed 4.0.5+debian-1
	7.10 gutsy	Fixed 4.0.5+debian-1
	7.04 feisty	Ignored end of life, was needed
	6.10 edgy	Ignored end of life, was needed
	6.06 LTS dapper	Ignored end of life

How can I get the fixes?
What do statuses mean?

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2007-1081

CVE-2007-1081

Description

Status

References

Other references

Access our resources on patching vulnerabilities