CVE-2006-0757

Multiple eval injection vulnerabilities in HiveMail 1.3 and earlier allow remote attackers to execute arbitrary PHP code via (1) the contactgroupid parameter in addressbook.update.php, (2) the messageid parameter in addressbook.add.php, (3) the folderid parameter in folders.update.php, and possibly certain parameters in (4) calendar.event.php, (5) index.php, (6) pop.download.php, (7) read.bounce.php, (8) rules.block.php, (9) language.php, and (10) certain other scripts, as demonstrated by an addressbook.update.php request with a contactgroupid value of phpinfo() preceded by facilitators.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html	Vendor Advisory
http://forum.hivemail.com/showthread.php?p=26745
http://secunia.com/advisories/18807
http://www.gulftech.org/?node=research&article_id=00098-02102006	Vendor Advisory
http://www.securityfocus.com/bid/16591
http://www.vupen.com/english/advisories/2006/0527
https://exchange.xforce.ibmcloud.com/vulnerabilities/24618
http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html	Vendor Advisory
http://forum.hivemail.com/showthread.php?p=26745
http://secunia.com/advisories/18807
http://www.gulftech.org/?node=research&article_id=00098-02102006	Vendor Advisory
http://www.securityfocus.com/bid/16591
http://www.vupen.com/english/advisories/2006/0527
https://exchange.xforce.ibmcloud.com/vulnerabilities/24618

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:hivemail:hivemail:1.1:::::::*
	cpe:2.3:a:hivemail:hivemail:1.1.1:::::::*
	cpe:2.3:a:hivemail:hivemail:1.2:::::::*
	cpe:2.3:a:hivemail:hivemail:1.2.1_beta1:::::::*
	cpe:2.3:a:hivemail:hivemail:1.2.1_rc:::::::*
	cpe:2.3:a:hivemail:hivemail:1.2.2:::::::*
	cpe:2.3:a:hivemail:hivemail:1.2_sp1:::::::*
	cpe:2.3:a:hivemail:hivemail:1.3:::::::*
	cpe:2.3:a:hivemail:hivemail:1.3_beta1:::::::*
	cpe:2.3:a:hivemail:hivemail:1.3_rc1:::::::*

History

21 Nov 2024, 00:07

Type	Values Removed	Values Added
References	~~() http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html - Vendor Advisory~~	() http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html - Vendor Advisory
References	~~() http://forum.hivemail.com/showthread.php?p=26745 -~~	() http://forum.hivemail.com/showthread.php?p=26745 -
References	~~() http://secunia.com/advisories/18807 -~~	() http://secunia.com/advisories/18807 -
References	~~() http://www.gulftech.org/?node=research&article_id=00098-02102006 - Vendor Advisory~~	() http://www.gulftech.org/?node=research&article_id=00098-02102006 - Vendor Advisory
References	~~() http://www.securityfocus.com/bid/16591 -~~	() http://www.securityfocus.com/bid/16591 -
References	~~() http://www.vupen.com/english/advisories/2006/0527 -~~	() http://www.vupen.com/english/advisories/2006/0527 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/24618 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/24618 -

Information

Published : 2006-02-18 02:02

Updated : 2025-04-03 01:03

NVD link : CVE-2006-0757

Mitre link : CVE-2006-0757

CVE.ORG link : CVE-2006-0757

JSON object : View

Products Affected

hivemail

hivemail

CWE

NVD-CWE-Other

{"id": "CVE-2006-0757", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2006-02-18T02:02:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://forum.hivemail.com/showthread.php?p=26745", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/18807", "source": "cve@mitre.org"}, {"url": "http://www.gulftech.org/?node=research&article_id=00098-02102006", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/16591", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/0527", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24618", "source": "cve@mitre.org"}, {"url": "http://archives.neohapsis.com/archives/bugtraq/2006-02/0162.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://forum.hivemail.com/showthread.php?p=26745", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://secunia.com/advisories/18807", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.gulftech.org/?node=research&article_id=00098-02102006", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/16591", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/0527", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24618", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Multiple eval injection vulnerabilities in HiveMail 1.3 and earlier allow remote attackers to execute arbitrary PHP code via (1) the contactgroupid parameter in addressbook.update.php, (2) the messageid parameter in addressbook.add.php, (3) the folderid parameter in folders.update.php, and possibly certain parameters in (4) calendar.event.php, (5) index.php, (6) pop.download.php, (7) read.bounce.php, (8) rules.block.php, (9) language.php, and (10) certain other scripts, as demonstrated by an addressbook.update.php request with a contactgroupid value of phpinfo() preceded by facilitators."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:hivemail:hivemail:1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD125F9D-1E13-419C-900B-6BF71A5E98B1"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.1.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4CDA700A-A6AA-49EB-B847-E995A341FFFF"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81A19437-0D2F-4C1F-B37E-6B0BC98993D0"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.2.1_beta1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B310602-7C6C-4C36-AE99-605F3932AB14"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.2.1_rc:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8C444230-0988-49BD-BCFE-439A33FD9912"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "681B2B76-9AFC-45B2-960F-F8309A01444C"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.2_sp1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "256B2BD7-34EA-42A7-A3F3-6F0F49FAD921"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DD9FE2A5-70D8-41A7-B201-541761EF8914"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.3_beta1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8D43770F-B354-4F6F-BADB-246E3D1C2777"}, {"criteria": "cpe:2.3:a:hivemail:hivemail:1.3_rc1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02247FB6-3D9D-47E6-A6A0-3F772421193A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}

7.5 /10