Vulnerability CVE-2006-1015


Published: 2006-03-06   Modified: 2012-02-12

Description:
Argument injection vulnerability in certain PHP 3.x, 4.x, and 5.x applications, when used with sendmail and when accepting remote input for the additional_parameters argument to the mail function, allows remote attackers to read and create arbitrary files via the sendmail -C and -X arguments. NOTE: it could be argued that this is a class of technology-specific vulnerability, instead of a particular instance; if so, then this should not be included in CVE.

See advisories in our WLB2 database:
Topic
Author
Date
High
(PHP) mb_send_mail security bypass
ced clerget free...
01.03.2006

Type:

CWE-Other

CVSS2 => (AV:N/AC:L/Au:N/C:P/I:P/A:N)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.4/10
4.9/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
None
Affected software
PHP -> PHP 

 References:
http://securityreason.com/securityalert/517
http://www.novell.com/linux/security/advisories/05-05-2006.html
http://www.securityfocus.com/archive/1/426497/100/0/threaded
http://www.securityfocus.com/bid/16878

Copyright 2021, cxsecurity.com

 

Back to Top