Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1014

Overview

Vulnerability Score 3.2 3.2
CVE Id CVE-2006-1014
Last Modified 07 Mar 2011 09:31:37
Published 06 Mar 2006 07:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-1014

Summary

Argument injection vulnerability in certain PHP 4.x and 5.x applications, when used with sendmail and when accepting remote input for the additional_parameters argument to the mb_send_mail function, allows context-dependent attackers to read and create arbitrary files by providing extra -C and -X arguments to sendmail. NOTE: it could be argued that this is a class of technology-specific vulnerability, instead of a particular instance; if so, then this should not be included in CVE.

Vulnerable Systems

Application

  • Php 4.0.0

  • Php 4.2

  • Php 4.3.10

  • Php 4.3.11

  • Php 4.3.3

  • Php 4.3.4

  • Php 4.3.5

  • Php 4.3.6

  • Php 4.3.7

  • Php 4.3.8

  • Php 4.3.9

  • Php 4.4.0

  • Php 4.4.1

  • Php 5.0

  • Php 5.0.0

  • Php 5.0.1

  • Php 5.0.2

  • Php 5.0.3

  • Php 5.0.4

  • Php 5.0.5

  • Php 5.1.0


References

BUGTRAQ - 20060228 (PHP) mb_send_mail security bypass

SECUNIA - 18694

VUPEN - ADV-2006-0772

BID - 16878

OSVDB - 23534

SUSE - SUSE-SA:2006:024

SECUNIA - 19979


Last Updated: 27 May 2016 10:41:53