Lucene search

K

MitreCVELIST:CVE-2006-0144

HistoryJan 09, 2006 - 11:00 p.m.

CVE-2006-0144

2006-01-0923:00:00

mitre

www.cve.org

7.6 High

AI Score

Confidence

High

0.036 Low

EPSS

Percentile

91.7%

The proxy server feature in go-pear.php in PHP PEAR 0.2.2, as used in Apache2Triad, allows remote attackers to execute arbitrary PHP code by redirecting go-pear.php to a malicious proxy server that provides a modified version of Tar.php with a malicious extractModify function.

References

apache2triad.net/forums/viewtopic.php?p=14670

secunia.com/advisories/18390

www.securityfocus.com/archive/1/421469/100/0/threaded

www.securityfocus.com/bid/16174

www.vupen.com/english/advisories/2006/0148

exchange.xforce.ibmcloud.com/vulnerabilities/24076

7.6 High

AI Score

Confidence

High

0.036 Low

EPSS

Percentile

91.7%

Related for CVELIST:CVE-2006-0144

cve1 nvd1 ubuntucve1 prion1