CERT Advisory CA-2002-35 - Cobalt Raq4 systems with the Security Hardening Package installed allow remote attackers to execute code as root because overflow.cgi does not adequately filter input destined for the email variable.
0f6f2e8184209658ee339e366fe5d0badc0607061e7156cc51ba6d1df49804c4