Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1246

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1246
Last Modified 10 Sep 2008 03:10:02
Published 30 Jun 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1246

Summary

PHP 4.0.5 through 4.1.0 in safe mode does not properly cleanse the 5th parameter to the mail() function, which allows local users and possibly remote attackers to execute arbitrary commands via shell metacharacters.

Vulnerable Systems

Application

  • Php 4.0.5


References

XF - php-safemode-elevate-privileges(6787)

CONFIRM - http://www.php.net/do_download.php?download_file=php-4.1.2.tar.gz

BID - 2954

REDHAT - RHSA-2003:159

REDHAT - RHSA-2002:129

REDHAT - RHSA-2002:102

BUGTRAQ - 20010630 php breaks safe mode


Last Updated: 27 May 2016 10:36:35