Executive Summary
| Summary | |
|---|---|
| Title | New libphp-phpmailer packages fix arbitrary shell command execution |
| Informations | |||
|---|---|---|---|
| Name | DSA-1315 | First vendor Publication | 2007-06-19 |
| Vendor | Debian | Last vendor Modification | 2007-06-19 |
| Severity (Vendor) | N/A | Revision | 1 |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P) | |||
|---|---|---|---|
| Cvss Base Score | 6.8 | Attack Range | Network |
| Cvss Impact Score | 6.4 | Attack Complexity | Medium |
| Cvss Expoit Score | 8.6 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Thor Larholm discovered that libphp-phpmailer, an email transfer class for PHP, performs insufficient input validition if configured to use Sendmail. This allows the execution of arbitrary shell commands. The oldstable distribution (sarge) doesn't include libphp-phpmailer. For the stable distribution (etch) this problem has been fixed in version 1.73-2etch1. For the unstable distribution (sid) this problem has been fixed in version 1.73-4. We recommend that you upgrade your libphp-phpmailer package. |
Original Source
| Url : http://www.debian.org/security/2007/dsa-1315 |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:20428 | |||
| Oval ID: | oval:org.mitre.oval:def:20428 | ||
| Title: | DSA-1315-1 libphp-phpmailer | ||
| Description: | Thor Larholm discovered that libphp-phpmailer, an email transfer class for PHP, performs insufficient input validition if configured to use Sendmail. This allows the execution of arbitrary shell commands. | ||
| Family: | unix | Class: | patch |
| Reference(s): | DSA-1315-1 CVE-2007-3215 | Version: | 5 |
| Platform(s): | Debian GNU/Linux 4.0 | Product(s): | libphp-phpmailer |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 5 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2009-06-30 | Name : Ubuntu USN-791-1 (moodle) File : nvt/ubuntu_791_1.nasl |
| 2008-01-17 | Name : Debian Security Advisory DSA 1315-1 (libphp-phpmailer) File : nvt/deb_1315_1.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 76139 | vTiger CRM cron/class.phpmailer.php phpmailer File Remote Command Execution |
| 42516 | Mambo Template Chooser Functionality Unspecified Issue |
| 42515 | Mambo Administrator Backend Unspecified XSS |
| 37206 | PHPMailer class.phpmailer.php SendmailSend Function Arbitrary Command Execution It is possible for an initiating script to set the Sender property to execute arbitrary commands because the SendmailSend() function in class.phpmailer.php is vulnerable to a shell command execution vulnerability due to a lack of input validation. |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2009-06-25 | Name : The remote Ubuntu host is missing a security-related patch. File : ubuntu_USN-791-1.nasl - Type : ACT_GATHER_INFO |
| 2007-06-27 | Name : The remote Debian host is missing a security-related update. File : debian_DSA-1315.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:26:42 |
|
