Mandrake Linux Security Advisory : php (MDKSA-2002:059)

high Nessus Plugin ID 13960

Synopsis

The remote Mandrake Linux host is missing one or more security updates.

Description

A fifth parameter was added to PHP's mail() function in 4.0.5 that is not properly sanitized when the server is running in safe mode. This vulnerability would allow local users and, possibly, remote attackers to execute arbitrary commands using shell metacharacters.

After upgrading to these packages, execute 'service httpd restart' as root in order to close the hole immediately.

Solution

Update the affected php, php-common and / or php-devel packages.

See Also

http://web.archive.org/web/20080829140252/http://online.securityfocus.com/archive/1/194425

Plugin Details

Severity: High

ID: 13960

File Name: mandrake_MDKSA-2002-059.nasl

Version: 1.18

Type: local

Published: 7/31/2004

Updated: 1/6/2021

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.3

CVSS v2

Risk Factor: High

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Vulnerability Information

CPE: p-cpe:/a:mandriva:linux:php, p-cpe:/a:mandriva:linux:php-common, p-cpe:/a:mandriva:linux:php-devel, cpe:/o:mandrakesoft:mandrake_linux:7.1, cpe:/o:mandrakesoft:mandrake_linux:7.2, cpe:/o:mandrakesoft:mandrake_linux:8.0, cpe:/o:mandrakesoft:mandrake_linux:8.1

Required KB Items: Host/local_checks_enabled, Host/cpu, Host/Mandrake/release, Host/Mandrake/rpm-list

Patch Publication Date: 9/10/2002

Reference Information

CVE: CVE-2001-1246

MDKSA: 2002:059