SquirrelMail map_yp_alias Command Injection Exploit

The map_yp_alias function in functions/imap_general.php in SquirrelMail before 1.4.18 and NaSMail before 1.7 allows remote attackers to execute arbitrary commands via shell metacharacters in a username string that is used by the ypmatch program. This module works if map:map_yp_alias is set as the imap server address in config.php, which is not the default setting.
Exploit type: 
Vulnerabilty ID: 
Product Version: 
Released Date: 
Wednesday, January 12, 2011 - 00:00