PEAR Installer Crafted Package Arbitrary Command Execution

2005-11-04T22:46:53
ID OSVDB:20856
Type osvdb
Reporter OSVDB
Modified 2005-11-04T22:46:53

Description

Solution Description

Upgrade to version 1.4.3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific Advisory URL Security Tracker: 1015161 Secunia Advisory ID:17563 ISS X-Force ID: 23021 CVE-2005-4154