Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:047741B735A0812F7E512331BE6B9403
HistoryMar 13, 2006 - 12:00 a.m.

phpRPC decode function command execution

2006-03-1300:00:00
SAINT Corporation
download.saintcorporation.com
15

0.151 Low

EPSS

Percentile

95.9%

JSON

Added: 03/13/2006
CVE: CVE-2006-1032
BID: 16833
OSVDB: 23514

Background

phpRPC is an xmlrpc library written in PHP supporting most databases.

Problem

A vulnerability in the **decode** function allows a remote attacker to execute arbitrary PHP commands placed inside a **<base64>** tag.

Resolution

phpRPC is no longer maintained by the author, so no fix is available. If phpRPC is installed as part of another product, contact the vendor of that product for a fix. Otherwise, remove phpRPC from the server.

References

<http://archives.neohapsis.com/archives/bugtraq/2006-02/0507.html&gt;

Related

exploitpack 1
prion 1
nessus 1
saint 3
cve 1
cvelist 1
nvd 1
exploitdb 1
exploitpack
exploitpack
phpRPC 0.7 - Remote Code Execution
2016-02-26 00:00:00
prion
prion
Design/Logic Flaw
2006-03-07 11:02:00
nessus
nessus
phpRPC Library rpc_decoder.php decode() Function Arbitrary Code Execution
2006-02-28 00:00:00
saint
saint
phpRPC decode function command execution
2006-03-13 00:00:00
phpRPC decode function command execution
2006-03-13 00:00:00
phpRPC decode function command execution
2006-03-13 00:00:00
cve
cve
CVE-2006-1032
2006-03-07 11:02:00
cvelist
cvelist
CVE-2006-1032
2006-03-07 11:00:00
nvd
nvd
CVE-2006-1032
2006-03-07 11:02:00
exploitdb
exploitdb
phpRPC &lt; 0.7 - Remote Code Execution
2016-02-26 00:00:00

0.151 Low

EPSS

Percentile

95.9%

JSON
Related for SAINT:047741B735A0812F7E512331BE6B9403
exploitpack1prion1nessus1saint3cve1cvelist1nvd1exploitdb1