Lucene search

[email protected]CVE-2008-0599

HistoryMay 05, 2008 - 5:20 p.m.

CVE-2008-0599

2008-05-0517:20:00

CWE-131

[email protected]

web.nvd.nist.gov

134

In Wild

cve-2008-0599

php

code execution

remote code execution

uri

security vulnerability

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.245 Low

EPSS

Percentile

96.6%

JSON

The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI.

CPENameOperatorVersion
php:phpphplt5.2.6
fedoraproject:fedorafedoraproject fedoraeq9
fedoraproject:fedorafedoraproject fedoraeq8
canonical:ubuntu_linuxcanonical ubuntu linuxeq7.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq7.10
canonical:ubuntu_linuxcanonical ubuntu linuxeq8.04
canonical:ubuntu_linuxcanonical ubuntu linuxeq6.06
apple:mac_os_x_serverapple mac os x serverlt10.5.4
apple:mac_os_xapple mac os xlt10.5.4

CPE	Name	Operator	Version
php:php	php	lt	5.2.6
fedoraproject:fedora	fedoraproject fedora	eq	9
fedoraproject:fedora	fedoraproject fedora	eq	8
canonical:ubuntu_linux	canonical ubuntu linux	eq	7.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	7.10
canonical:ubuntu_linux	canonical ubuntu linux	eq	8.04
canonical:ubuntu_linux	canonical ubuntu linux	eq	6.06
apple:mac_os_x_server	apple mac os x server	lt	10.5.4
apple:mac_os_x	apple mac os x	lt	10.5.4

References

cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.50.2.12&r2=1.267.2.15.2.50.2.13&diff_format=u

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01476437

lists.apple.com/archives/security-announce//2008/Jul/msg00003.html

marc.info/?l=bugtraq&m=124654546101607&w=2

marc.info/?l=bugtraq&m=125631037611762&w=2

secunia.com/advisories/30048

secunia.com/advisories/30083

secunia.com/advisories/30345

secunia.com/advisories/30616

secunia.com/advisories/30757

secunia.com/advisories/30828

secunia.com/advisories/31200

secunia.com/advisories/31326

secunia.com/advisories/32746

secunia.com/advisories/35650

security.gentoo.org/glsa/glsa-200811-05.xml

wiki.rpath.com/wiki/Advisories:rPSA-2008-0176

www.kb.cert.org/vuls/id/147027

www.mandriva.com/security/advisories?name=MDVSA-2008:127

www.mandriva.com/security/advisories?name=MDVSA-2008:128

www.openwall.com/lists/oss-security/2008/05/02/2

www.php.net/ChangeLog-5.php

www.redhat.com/support/errata/RHSA-2008-0505.html

www.securityfocus.com/archive/1/492535/100/0/threaded

www.securityfocus.com/bid/29009

www.securitytracker.com/id?1019958

www.slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.488951

www.ubuntu.com/usn/usn-628-1

www.vupen.com/english/advisories/2008/1412

www.vupen.com/english/advisories/2008/1810/references

www.vupen.com/english/advisories/2008/2268

exchange.xforce.ibmcloud.com/vulnerabilities/42137

issues.rpath.com/browse/RPL-2503

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5510

www.redhat.com/archives/fedora-package-announce/2008-June/msg00773.html

www.redhat.com/archives/fedora-package-announce/2008-June/msg00779.html

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.245 Low

EPSS

Percentile

96.6%

JSON

Related for CVE-2008-0599

seebug1 openvas27 ubuntucve1 cert1 attackerkb1 nessus11 veracode1 prion1 slackware1 cvelist1 fedora3 redhat1 ubuntu1 gentoo1