CVE-2005-1921: Code Injection
First published: Fri Jul 01 2005(Updated: )
Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.
Credit: secalert@redhat.com secalert@redhat.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Pear Xml Rpc | =1.2.0 | |
| Pear Xml Rpc | =1.0.2 | |
| Pear Xml Rpc | =1.2.1 | |
| Pear Xml Rpc | =1.0.4 | |
| Pear Xml Rpc | =1.2.0rc7 | |
| Pear Xml Rpc | =1.3.0rc1 | |
| Pear Xml Rpc | =1.3.0rc2 | |
| Pear Xml Rpc | =1.1.0 | |
| Pear Xml Rpc | =1.2.0rc2 | |
| Pear Xml Rpc | =1.2.2 | |
| Pear Xml Rpc | =1.2.0rc3 | |
| Pear Xml Rpc | =1.3.0rc3 | |
| Pear Xml Rpc | =1.2.0rc4 | |
| Pear Xml Rpc | =1.2.0rc1 | |
| Pear Xml Rpc | =1.2.0rc6 | |
| Pear Xml Rpc | =1.2.0rc5 | |
| Pear Xml Rpc | =1.0.3 | |
| <=1.3.0 | ||
| Gggeek Phpxmlrpc | <=1.1 | |
| Drupal Drupal | <4.5.4 | |
| Drupal Drupal | >=4.6.0<4.6.2 | |
| Tiki Tikiwiki Cms\/groupware | <1.8.5 | |
| Debian Debian Linux | =3.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://pear.php.net/package/XML_RPC/download/1.3.1
- http://www.gulftech.org/?node=research&article_id=00087-07012005
- http://www.hardened-php.net/advisory-022005.php
- http://www.mandriva.com/security/advisories?name=MDKSA-2005:109
- http://sourceforge.net/project/shownotes.php?release_id=338803
- http://www.debian.org/security/2005/dsa-745
- http://www.debian.org/security/2005/dsa-747
- http://security.gentoo.org/glsa/glsa-200507-01.xml
- http://security.gentoo.org/glsa/glsa-200507-06.xml
- http://security.gentoo.org/glsa/glsa-200507-07.xml
- http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt
- http://sourceforge.net/project/showfiles.php?group_id=87163
- http://www.ampache.org/announce/3_3_1_2.php
- http://secunia.com/advisories/15852
- http://secunia.com/advisories/15872
- http://secunia.com/advisories/15944
- http://secunia.com/advisories/15947
- http://secunia.com/advisories/15957
- http://secunia.com/advisories/16001
- http://www.debian.org/security/2005/dsa-789
- http://www.securityfocus.com/bid/14088
- http://securitytracker.com/id?1015336
- http://secunia.com/advisories/18003
- http://secunia.com/advisories/15810
- http://secunia.com/advisories/15855
- http://secunia.com/advisories/15861
- http://secunia.com/advisories/15883
- http://secunia.com/advisories/15884
- http://secunia.com/advisories/15895
- http://secunia.com/advisories/15903
- http://secunia.com/advisories/15904
- http://secunia.com/advisories/15916
- http://secunia.com/advisories/15917
- http://secunia.com/advisories/15922
- http://secunia.com/advisories/16339
- http://secunia.com/advisories/16693
- http://secunia.com/advisories/17440
- http://secunia.com/advisories/17674
- http://www.debian.org/security/2005/dsa-746
- http://www.redhat.com/support/errata/RHSA-2005-564.html
- http://www.novell.com/linux/security/advisories/2005_41_php_pear.html
- http://www.novell.com/linux/security/advisories/2005_49_php.html
- http://www.novell.com/linux/security/advisories/2005_18_sr.html
- http://www.vupen.com/english/advisories/2005/2827
- http://marc.info/?l=bugtraq&m=112008638320145&w=2
- http://marc.info/?l=bugtraq&m=112015336720867&w=2
- http://marc.info/?l=bugtraq&m=112605112027335&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294
- http://www.securityfocus.com/archive/1/419064/100/0/threaded
- collector/nvd-historical
- vendor/pear
- product/xml rpc
- canonical/pear xml rpc
- collector/nvd-index
- agent/references
- agent/type
- agent/first-publish-date
- agent/remedy
- agent/last-modified-date
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/event
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- version/pear xml rpc/1.2.0
- version/pear xml rpc/1.0.2
- version/pear xml rpc/1.2.1
- version/pear xml rpc/1.0.4
- version/pear xml rpc/1.2.0rc7
- version/pear xml rpc/1.3.0rc1
- version/pear xml rpc/1.3.0rc2
- version/pear xml rpc/1.1.0
- version/pear xml rpc/1.2.0rc2
- version/pear xml rpc/1.2.2
- version/pear xml rpc/1.2.0rc3
- version/pear xml rpc/1.3.0rc3
- version/pear xml rpc/1.2.0rc4
- version/pear xml rpc/1.2.0rc1
- version/pear xml rpc/1.2.0rc6
- version/pear xml rpc/1.2.0rc5
- version/pear xml rpc/1.0.3
- vendor/php
- vendor/gggeek
- canonical/gggeek phpxmlrpc
- version/gggeek phpxmlrpc/1.1
- vendor/drupal
- canonical/drupal drupal
- version/drupal drupal/4.6.0
- vendor/tiki
- canonical/tiki tikiwiki cms\/groupware
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/3.1