Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2692

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2004-2692
Last Modified 05 Sep 2008 04:44:51
Published 31 Dec 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-2692

Summary

The exec_dir PHP patch (php-exec-dir) 4.3.2 through 4.3.7 with safe mode disabled allows remote attackers to bypass restrictions and execute arbitrary commands via a backtick operator, which is not handled using the php_escape_shell_cmd function.

Vulnerable Systems

Application

  • Kyberdigi Labs Php-exec-dir 4.3.2

  • Kyberdigi Labs Php-exec-dir 4.3.3

  • Kyberdigi Labs Php-exec-dir 4.3.4

  • Kyberdigi Labs Php-exec-dir 4.3.5

  • Kyberdigi Labs Php-exec-dir 4.3.6

  • Kyberdigi Labs Php-exec-dir 4.3.7


References

BID - 10598

CONFIRM - http://kyberdigi.cz/projects/execdir/english.html

XF - phpexecdir-semicolon-restriction-bypass(16498)

OSVDB - 7243

SECUNIA - 11928

FULLDISC - 20040708 Re: php-exec-dir vulnerable after latest upgrade

FULLDISC - 20040708 RE: php-exec-dir vulnerable after latest upgrade

FULLDISC - 20040708 php-exec-dir vulnerable after latest upgrade


Last Updated: 27 May 2016 10:39:35