CVE-2005-1921: Code Injection
First published: Fri Jul 01 2005(Updated: )
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
Credit: secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pear Xml Rpc | =1.2.0 | |
| Pear Xml Rpc | =1.0.2 | |
| Pear Xml Rpc | =1.2.1 | |
| Pear Xml Rpc | =1.0.4 | |
| Pear Xml Rpc | =1.2.0rc7 | |
| Pear Xml Rpc | =1.3.0rc1 | |
| Pear Xml Rpc | =1.3.0rc2 | |
| Pear Xml Rpc | =1.1.0 | |
| Pear Xml Rpc | =1.2.0rc2 | |
| Pear Xml Rpc | =1.2.2 | |
| Pear Xml Rpc | =1.2.0rc3 | |
| Pear Xml Rpc | =1.3.0rc3 | |
| Pear Xml Rpc | =1.2.0rc4 | |
| Pear Xml Rpc | =1.2.0rc1 | |
| Pear Xml Rpc | =1.2.0rc6 | |
| Pear Xml Rpc | =1.2.0rc5 | |
| Pear Xml Rpc | =1.0.3 | |
| PHP XML RPC PEAR | <=1.3.0 | |
| gggeek PHPXMLRPC | <=1.1 | |
| Drupal | <4.5.4 | |
| Drupal | >=4.6.0<4.6.2 | |
| Tiki TikiWiki cms\/groupware | <1.8.5 | |
| Debian | =3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://pear.php.net/package/XML_RPC/download/1.3.1
- http://www.gulftech.org/?node=research&article_id=00087-07012005
- http://www.hardened-php.net/advisory-022005.php
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:109
- http://sourceforge.net/project/shownotes.php?release_id=338803
- http://www.debian.org/security/2005/dsa-745
- http://www.debian.org/security/2005/dsa-747
- http://security.gentoo.org/glsa/glsa-200507-01.xml
- http://security.gentoo.org/glsa/glsa-200507-06.xml
- http://security.gentoo.org/glsa/glsa-200507-07.xml
- http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt
- http://sourceforge.net/project/showfiles.php?group_id=87163
- http://www.ampache.org/announce/3_3_1_2.php
- http://secunia.com/advisories/15852
- http://secunia.com/advisories/15872
- http://secunia.com/advisories/15944
- http://secunia.com/advisories/15947
- http://secunia.com/advisories/15957
- http://secunia.com/advisories/16001
- http://www.debian.org/security/2005/dsa-789
- http://www.securityfocus.com/bid/14088
- http://securitytracker.com/id?1015336
- http://secunia.com/advisories/18003
- http://secunia.com/advisories/15810
- http://secunia.com/advisories/15855
- http://secunia.com/advisories/15861
- http://secunia.com/advisories/15883
- http://secunia.com/advisories/15884
- http://secunia.com/advisories/15895
- http://secunia.com/advisories/15903
- http://secunia.com/advisories/15904
- http://secunia.com/advisories/15916
- http://secunia.com/advisories/15917
- http://secunia.com/advisories/15922
- http://secunia.com/advisories/16339
- http://secunia.com/advisories/16693
- http://secunia.com/advisories/17440
- http://secunia.com/advisories/17674
- http://www.debian.org/security/2005/dsa-746
- http://www.redhat.com/support/errata/RHSA-2005-564.html
- http://www.novell.com/linux/security/advisories/2005_41_php_pear.html
- http://www.novell.com/linux/security/advisories/2005_49_php.html
- http://www.novell.com/linux/security/advisories/2005_18_sr.html
- http://www.vupen.com/english/advisories/2005/2827
- http://marc.info/?l=bugtraq&m=112008638320145&w=2
- http://marc.info/?l=bugtraq&m=112015336720867&w=2
- http://marc.info/?l=bugtraq&m=112605112027335&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294
- http://www.securityfocus.com/archive/1/419064/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2005-1921?
CVE-2005-1921 has a medium severity rating, indicating a moderate risk.
How do I fix CVE-2005-1921?
To fix CVE-2005-1921, upgrade PEAR XML_RPC to version 1.3.1 or later.
Which software is affected by CVE-2005-1921?
CVE-2005-1921 affects software such as WordPress, Drupal, and TikiWiki that utilize PEAR XML_RPC version 1.3.0 and earlier.
What type of vulnerability is CVE-2005-1921?
CVE-2005-1921 is classified as an eval injection vulnerability.
Is there a patch available for CVE-2005-1921?
Yes, a patch is available by upgrading to PEAR XML_RPC version 1.3.1 or above.
- collector/nvd-historical
- vendor/pear
- product/xml rpc
- canonical/pear xml rpc
- collector/nvd-index
- agent/references
- agent/type
- agent/remedy
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/author
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- version/pear xml rpc/1.2.0
- version/pear xml rpc/1.0.2
- version/pear xml rpc/1.2.1
- version/pear xml rpc/1.0.4
- version/pear xml rpc/1.2.0rc7
- version/pear xml rpc/1.3.0rc1
- version/pear xml rpc/1.3.0rc2
- version/pear xml rpc/1.1.0
- version/pear xml rpc/1.2.0rc2
- version/pear xml rpc/1.2.2
- version/pear xml rpc/1.2.0rc3
- version/pear xml rpc/1.3.0rc3
- version/pear xml rpc/1.2.0rc4
- version/pear xml rpc/1.2.0rc1
- version/pear xml rpc/1.2.0rc6
- version/pear xml rpc/1.2.0rc5
- version/pear xml rpc/1.0.3
- vendor/php
- canonical/php xml rpc pear
- version/php xml rpc pear/1.3.0
- vendor/gggeek
- canonical/gggeek phpxmlrpc
- version/gggeek phpxmlrpc/1.1
- vendor/drupal
- canonical/drupal
- version/drupal/4.6.0
- vendor/tiki
- canonical/tiki tikiwiki cms\/groupware
- vendor/debian
- canonical/debian
- version/debian/3.1