CVE-2008-2829

MEDIUM
New! CVE Severity Now Using CVSS v3

The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.

Description

php_imap.c in PHP 5.2.5, 5.2.6, 4.x, and other versions, uses obsolete API calls that allow context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long IMAP request, which triggers an "rfc822.c legacy routine buffer overflow" error message, related to the rfc822_write_address function.

References

http://bugs.php.net/bug.php?id=42862

http://lists.apple.com/archives/security-announce/2009/May/msg00002.html

http://lists.opensuse.org/opensuse-security-announce/2008-12/msg00002.html

http://marc.info/?l=bugtraq&m=124654546101607&w=2

http://marc.info/?l=bugtraq&m=125631037611762&w=2

http://osvdb.org/46641

http://secunia.com/advisories/31200

http://secunia.com/advisories/32746

http://secunia.com/advisories/35074

http://secunia.com/advisories/35306

http://secunia.com/advisories/35650

http://security.gentoo.org/glsa/glsa-200811-05.xml

http://support.apple.com/kb/HT3549

http://wiki.rpath.com/Advisories:rPSA-2009-0035

http://www.mandriva.com/security/advisories?name=MDVSA-2008:126

http://www.mandriva.com/security/advisories?name=MDVSA-2008:127

http://www.mandriva.com/security/advisories?name=MDVSA-2008:128

http://www.openwall.com/lists/oss-security/2008/06/19/6

http://www.openwall.com/lists/oss-security/2008/06/24/2

http://www.securityfocus.com/archive/1/501376/100/0/threaded

http://www.securityfocus.com/bid/29829

http://www.ubuntu.com/usn/usn-628-1

http://www.us-cert.gov/cas/techalerts/TA09-133A.html

http://www.vupen.com/english/advisories/2009/1297

https://bugs.gentoo.org/show_bug.cgi?id=221969

https://exchange.xforce.ibmcloud.com/vulnerabilities/43357

https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01451.html

https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01465.html

Details

Source: MITRE

Published: 2008-06-23

Updated: 2019-10-09

Type: CWE-119

Risk Information

CVSS v2

Base Score: 5

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Impact Score: 2.9

Exploitability Score: 10

Severity: MEDIUM

Vulnerable Software

Configuration 1

OR

cpe:2.3:a:php:php:*:*:*:*:*:*:*:* versions up to 4.4.9 (inclusive)

cpe:2.3:a:php:php:5.2.5:*:*:*:*:*:*:*

cpe:2.3:a:php:php:5.2.6:*:*:*:*:*:*:*

Configuration 2

OR

cpe:2.3:o:canonical:ubuntu_linux:6.06:*:*:*:lts:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:7.04:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:7.10:*:*:*:*:*:*:*

cpe:2.3:o:canonical:ubuntu_linux:8.04:*:*:*:lts:*:*:*

Tenable Plugins

View all (17 total)

IDNameProductFamilySeverity
4779PHP 5.x < 5.2.7 Multiple VulnerabilitiesNessus Network MonitorWeb Servers
high
39914openSUSE Security Update : apache2-mod_php5 (apache2-mod_php5-310)NessusSuSE Local Security Checks
medium
38957Fedora 9 : maniadrive-1.2-13.fc9 / php-5.2.9-2.fc9 (2009-3848)NessusFedora Local Security Checks
critical
38956Fedora 10 : maniadrive-1.2-13.fc10 / php-5.2.9-2.fc10 (2009-3768)NessusFedora Local Security Checks
critical
38744Mac OS X 10.5.x < 10.5.7 Multiple VulnerabilitiesNessusMacOS X Local Security Checks
critical
38042Mandriva Linux Security Advisory : php (MDVSA-2008:127)NessusMandriva Local Security Checks
critical
37584Mandriva Linux Security Advisory : php (MDVSA-2008:126)NessusMandriva Local Security Checks
critical
36486Mandriva Linux Security Advisory : php (MDVSA-2008:128)NessusMandriva Local Security Checks
critical
35051FreeBSD : php -- multiple vulnerabilities (27d01223-c457-11dd-a721-0030843d3802)NessusFreeBSD Local Security Checks
high
35043PHP 5 < 5.2.7 Multiple VulnerabilitiesNessusCGI abuses
high
35035Slackware 12.0 / 12.1 / current : php (SSA:2008-339-01)NessusSlackware Local Security Checks
high
35004openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-5787)NessusSuSE Local Security Checks
medium
34787GLSA-200811-05 : PHP: Multiple vulnerabilitiesNessusGentoo Local Security Checks
critical
33575Ubuntu 6.06 LTS / 7.04 / 7.10 / 8.04 LTS : php5 vulnerabilities (USN-628-1)NessusUbuntu Local Security Checks
critical
5023Mac OS X 10.5 < 10.5.7 Multiple VulnerabilitiesNessus Network MonitorGeneric
critical
801088PHP 5 < 5.2.7 Multiple VulnerabilitiesLog Correlation EngineWeb Servers
high
800792Mac OS X 10.5 < 10.5.7 Multiple VulnerabilitiesLog Correlation EngineOperating System Detection
high