Lucene search
Debian Security Bug TrackerDEBIANCVE:CVE-2008-5619HistoryDec 17, 2008 - 2:30 a.m.
CVE-2008-5619
2008-12-1702:30:00
Debian Security Bug Tracker
security-tracker.debian.org
13
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.886 High
EPSS
Percentile
98.7%
html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Debian | 12 | all | roundcube | < 0.1.1-9 | roundcube_0.1.1-9_all.deb |
| Debian | 11 | all | roundcube | < 0.1.1-9 | roundcube_0.1.1-9_all.deb |
| Debian | 10 | all | roundcube | < 0.1.1-9 | roundcube_0.1.1-9_all.deb |
| Debian | 999 | all | roundcube | < 0.1.1-9 | roundcube_0.1.1-9_all.deb |
| Debian | 13 | all | roundcube | < 0.1.1-9 | roundcube_0.1.1-9_all.deb |
Related
packetstorm
packetstorm
RoundCube Webmail 0.2-3 Beta Code Execution
2008-12-30 00:00:00
RoundCube Webmail 0.2b Remote Code Execution
2008-12-30 00:00:00
exploitpack
exploitpack
Roundcube Webmail 0.2b - Remote Code Execution
2008-12-22 00:00:00
Roundcube Webmail 0.2-3 Beta - Code Execution
2008-12-22 00:00:00
seebug
seebug
RoundCube Webmail <= 0.2-3 beta Code Execution Vulnerability
2008-12-23 00:00:00
RoundCube Webmail <= 0.2b Remote Code Execution Exploit
2014-07-01 00:00:00
RoundCube Webmail <= 0.2-3 beta Code Execution Vulnerability
2014-07-01 00:00:00
openvas
openvas
Fedora Update for roundcubemail FEDORA-2008-11234
2009-02-13 00:00:00
FreeBSD Ports: roundcube
2009-01-02 00:00:00
Fedora Update for roundcubemail FEDORA-2008-11234
2009-02-13 00:00:00
securityvulns
securityvulns
freebsd
freebsd
roundcube -- remote execution of arbitrary code
2008-12-12 00:00:00
ubuntucve
ubuntucve
CVE-2008-5619
2008-12-17 00:00:00
dsquare
dsquare
Roundcube 0.2beta RCE
2012-01-31 00:00:00
nessus
nessus
Fedora 9 : roundcubemail-0.2-4.beta.fc9 (2008-11234)
2008-12-15 00:00:00
Fedora 8 : roundcubemail-0.2-4.beta.fc8 (2008-11220)
2008-12-15 00:00:00
osv
osv
PHPMailer susceptible to arbitrary code execution
2022-05-14 02:39:43
cve
cve
CVE-2008-5619
2008-12-17 02:30:00
checkpoint_advisories
checkpoint_advisories
Update Protection against Roundcubemail PHP Arbitrary Code Injection
2009-01-15 00:00:00
canvas
canvas
Immunity Canvas: ROUNDCUBE
2008-12-17 02:30:00
prion
prion
Hardcoded credentials
2008-12-17 02:30:00
github
github
PHPMailer susceptible to arbitrary code execution
2022-05-14 02:39:43
exploitdb
exploitdb
Roundcube Webmail 0.2-3 Beta - Code Execution
2008-12-22 00:00:00
Roundcube Webmail 0.2b - Remote Code Execution
2008-12-22 00:00:00
ubuntu
ubuntu
Moodle vulnerabilities
2009-06-24 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.886 High
EPSS
Percentile
98.7%
Related for DEBIANCVE:CVE-2008-5619