CVE-2009-0517

Eval injection vulnerability in index.php in phpSlash 0.8.1.1 and earlier allows remote attackers to execute arbitrary PHP code via the fields parameter, which is supplied to an eval function call within the generic function in include/class/tz_env.class. NOTE: some of these details are obtained from third party information.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/51727
http://secunia.com/advisories/33717	Vendor Advisory
http://www.securityfocus.com/archive/1/500664/100/0/threaded
http://www.securityfocus.com/bid/33572	Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/48441
https://www.exploit-db.com/exploits/7948

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:phpslash:phpslash::::::::
	cpe:2.3:a:phpslash:phpslash::::::::
	cpe:2.3:a:phpslash:phpslash:0.5.3.2:::::::*
	cpe:2.3:a:phpslash:phpslash:0.6:::::::*
	cpe:2.3:a:phpslash:phpslash:0.6.1:::::::*
	cpe:2.3:a:phpslash:phpslash:0.6.2:::::::*
	cpe:2.3:a:phpslash:phpslash:0.7.1:::::::*
	cpe:2.3:a:phpslash:phpslash:0.7.2:::::::*
	cpe:2.3:a:phpslash:phpslash:0.8.0:::::::*
	cpe:2.3:a:phpslash:phpslash:0.8.1:::::::*
	cpe:2.3:a:phpslash:phpslash:0.61:::::::*
	cpe:2.3:a:phpslash:phpslash:065:::::::*

History

No history.

Information

Published : 2009-02-11 00:30

Updated : 2024-02-04 17:33

NVD link : CVE-2009-0517

Mitre link : CVE-2009-0517

CVE.ORG link : CVE-2009-0517

JSON object : View

Products Affected

phpslash

phpslash

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

{"id": "CVE-2009-0517", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2009-02-11T00:30:03.017", "references": [{"url": "http://osvdb.org/51727", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/33717", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/500664/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/33572", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/48441", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/7948", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-94"}]}], "descriptions": [{"lang": "en", "value": "Eval injection vulnerability in index.php in phpSlash 0.8.1.1 and earlier allows remote attackers to execute arbitrary PHP code via the fields parameter, which is supplied to an eval function call within the generic function in include/class/tz_env.class. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Vulnerabilidad de inyecci\u00f3n Eval en phpSlash v0.8.1.1 y anteriores permite a atacantes remotos ejecutar c\u00f3digo PHP de su elecci\u00f3n, a trav\u00e9s del par\u00e1metro \"fields\", el cual en enviado a una llamada a la funci\u00f3n eval sin la funci\u00f3n gen\u00e9rica en include/class/tz_env.class. NOTA: Algunos de estos detalles han sido obtenidos de informaci\u00f3n de terceras personas."}], "lastModified": "2018-10-11T21:01:53.417", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:phpslash:phpslash:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "385ABF67-157E-4592-80E7-8399C4D72879"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9CA61227-D278-4502-92ED-24C3E900FEC5", "versionEndIncluding": "0.8.1.1"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.5.3.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DC8FB8A1-BE41-4E62-88E9-AB15246AB0FF"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "68D5F330-5C61-4627-B925-272A357E1338"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.6.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C9493398-C12A-439A-9836-0D62F6510D0B"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.6.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "506762E9-EAA6-4AFE-8F78-3FA6491C27F0"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.7.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31BDD3F6-789D-48AB-AD5C-137BB5D53BB5"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.7.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0292084B-B04A-4465-936B-51FFFE5328C8"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0B370B91-6B3C-4423-ABE5-840999099D0A"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "703FD7D9-5D17-4C57-882A-8EF33CDE44F4"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:0.61:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BF4822EC-378F-44B5-90E3-5B3F82247C92"}, {"criteria": "cpe:2.3:a:phpslash:phpslash:065:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1BCF8850-3160-45C9-AA16-C785AFDB246C"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}