Cybersecurity

Cyber: Mail2shell Zero-click Attack Lets Hackers Hijack Freescout Mail...

2026-03-04 0 views admin
Cyber: Mail2shell Zero-click Attack Lets Hackers Hijack Freescout Mail...

A maximum severity vulnerability in the FreeScout helpdesk platform allows hackers to achieve remote code execution without any user interaction or authentication.

The flaw is tracked as CVE-2026-28289 and bypasses a fix for another remote code execution (RCE) security issue (CVE-2026-27636) that could be exploited by authenticated users with upload permissions.

Researchers at OX Security, a company that secures applications from code to runtime, say that an attacker can exploit the new vulnerability by "sending a single crafted email to any address configured in FreeScout."

According to them, the fix attempted to block dangerous file uploads by modifying filenames with restricted extensions or those starting with a dot.

The OX Research team discovered that a zero-width space (Unicode U+200B) could be placed before the filename to bypass the recently introduced validation mechanism, since the character is not treated as visible content.

Subsequent processing removes that character, allowing the file to be saved as a dotfile, and hence, still triggering CVE-2026-27636 exploitation by completely bypassing the latest security checks.

Making matters worse, CVE-2026-28289 can be triggered by a malicious email attachment delivered to a mailbox configured in FreeScout, the researchers say.

The program stores the attachment in “/storage/attachment/…,” enabling the attacker to access the uploaded payload through the web interface and execute commands on the server without authentication or user interaction, making it a zero-click vulnerability.

“A patch bypass vulnerability in FreeScout 1.8.206 allows any authenticated user with file upload permissions to achieve Remote Code Execution (RCE) on the server by uploading a malicious .htaccess file using a zero-width space character prefix to bypass the security check,” the vendor says in a security bulletin.

FreeScout is an open-source help desk and shared mailbox platform used by organizations to manage customer support emails and tickets. It’s a self-hosted alternative to Zendesk or Help Scout.

Source: BleepingComputer

🏷️ Tags

securityhackvulnerabilitycveattack

More from Cybersecurity

Cyber: Latest Bitwarden Adds Support For Passkey Login On Windows 11

Cyber: Latest Bitwarden Adds Support For Passkey Login On Windows 11

2026-03-04 0
Cyber: Windows 10 Kb5075039 Update Fixes Broken Recovery Environment

Cyber: Windows 10 Kb5075039 Update Fixes Broken Recovery Environment

2026-03-04 0
Cyber: Spyware-grade Coruna Ios Exploit Kit Now Used In Crypto Theft Attacks

Cyber: Spyware-grade Coruna Ios Exploit Kit Now Used In Crypto Theft Attacks

2026-03-04 0
Cyber: Hacker Mass-mails Hungerrush Extortion Emails To Restaurant Patrons

Cyber: Hacker Mass-mails Hungerrush Extortion Emails To Restaurant Patrons

2026-03-04 0

Trending

1

CVE-2025-61481: Critical Remote Code Execution Vulnerability in MikroTik RouterOS & SwitchOS

2025-10-27 • 189 views
2

CVE-2025-43939: Dell Unity OS Command Injection (High)

2025-10-30 • 148 views
3

Google disputes false claims of massive Gmail data breach

2025-10-30 • 130 views
4

Microsoft: DNS outage impacts Azure and Microsoft 365 services

2025-10-30 • 88 views
5

3.5B Accounts, 1 Critical Flaw: Meta Closes WhatsApp Data-Harvesting

2025-11-25 • 81 views