oval:org.mitre.oval:def:11670

Definition Id: oval:org.mitre.oval:def:11670
 
Oval ID: oval:org.mitre.oval:def:11670
Title: ** DISPUTED ** PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and earlier, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter. NOTE: this issue has been disputed by third parties, who state that Squirrelmail provides prominent warnings to the administrator when register_globals is enabled. Since the varieties of administrator negligence are uncountable, perhaps this type of issue should not be included in CVE. However, the original developer has posted a security advisory, so there might be relevant real-world environments under which this vulnerability is applicable.
Description: ** DISPUTED ** PHP remote file inclusion vulnerability in functions/plugin.php in SquirrelMail 1.4.6 and earlier, if register_globals is enabled and magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the plugins array parameter. NOTE: this issue has been disputed by third parties, who state that Squirrelmail provides prominent warnings to the administrator when register_globals is enabled. Since the varieties of administrator negligence are uncountable, perhaps this type of issue should not be included in CVE. However, the original developer has posted a security advisory, so there might be relevant real-world environments under which this vulnerability is applicable.
Family: unix Class: vulnerability
Reference(s): CVE-2006-2842
 Version: 5
Platform(s): Red Hat Enterprise Linux 3
CentOS Linux 3
Red Hat Enterprise Linux 4
CentOS Linux 4
Oracle Linux 4
 Product(s):
Definition Synopsis:
Definition Id: oval:org.mitre.oval:def:16636
 
Oval ID: oval:org.mitre.oval:def:16636
Title: CentOS Linux 4.x
Description: The operating system installed on the system is CentOS Linux 4.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:4
 Version: 3
Platform(s): CentOS Linux 4
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11670
Definition Id: oval:org.mitre.oval:def:15990
 
Oval ID: oval:org.mitre.oval:def:15990
Title: Oracle Linux 4.x
Description: The operating system installed on the system is Oracle Linux 4.x
Family: unix Class: inventory
Reference(s): cpe:/o:oracle:linux:4
 Version: 5
Platform(s): Oracle Linux 4
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11670
Definition Id: oval:org.mitre.oval:def:11782
 
Oval ID: oval:org.mitre.oval:def:11782
Title: The operating system installed on the system is Red Hat Enterprise Linux 3
Description: The operating system installed on the system is Red Hat Enterprise Linux 3.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:3
 Version: 7
Platform(s): Red Hat Enterprise Linux 3
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11670
Definition Id: oval:org.mitre.oval:def:16651
 
Oval ID: oval:org.mitre.oval:def:16651
Title: CentOS Linux 3.x
Description: The operating system installed on the system is CentOS Linux 3.x
Family: unix Class: inventory
Reference(s): cpe:/o:centos:centos:3
 Version: 3
Platform(s): CentOS Linux 3
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11670
Definition Id: oval:org.mitre.oval:def:11831
 
Oval ID: oval:org.mitre.oval:def:11831
Title: The operating system installed on the system is Red Hat Enterprise Linux 4
Description: The operating system installed on the system is Red Hat Enterprise Linux 4.
Family: unix Class: inventory
Reference(s): cpe:/o:redhat:enterprise_linux:4
 Version: 7
Platform(s): Red Hat Enterprise Linux 4
 Product(s):
Definition Synopsis:
Referenced By:
oval:org.mitre.oval:def:11670