F5 Networks BIG-IP : PHPMailer vulnerability (K73926196)

critical Nessus Plugin ID 100280


The remote device is missing a vendor-supplied security patch.


The isMail transport in PHPMailer before 5.2.20 might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code by leveraging improper interaction between the escapeshellarg function and internal escaping performed in the mail function in PHP. NOTE: this vulnerability exists because of an incorrect fix for CVE-2016-10033. (CVE-2016-10045)


Upgrade to one of the non-vulnerable versions listed in the F5 Solution K73926196.

See Also


Plugin Details

Severity: Critical

ID: 100280

File Name: f5_bigip_SOL73926196.nasl

Version: 3.8

Type: local

Published: 5/19/2017

Updated: 1/4/2019

Configuration: Enable paranoid mode

Risk Information


Risk Factor: High

Score: 8.4


Risk Factor: High

Base Score: 7.5

Temporal Score: 6.2

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: E:F/RL:OF/RC:C


Risk Factor: Critical

Base Score: 9.8

Temporal Score: 9.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:f5:big-ip_application_visibility_and_reporting, cpe:/h:f5:big-ip

Required KB Items: Host/local_checks_enabled, Host/BIG-IP/hotfix, Host/BIG-IP/modules, Host/BIG-IP/version, Settings/ParanoidReport

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2/13/2017

Exploitable With

Core Impact

Metasploit (PHPMailer Sendmail Argument Injection)

Reference Information

CVE: CVE-2016-10033, CVE-2016-10045