CVE-2007-2519
First published: Tue May 22 2007(Updated: )
Directory traversal vulnerability in the installer in PEAR 1.0 through 1.5.3 allows user-assisted remote attackers to overwrite arbitrary files via a .. (dot dot) sequence in the (1) install-as attribute in the file element in package.xml 1.0 or the (2) as attribute in the install element in package.xml 2.0. NOTE: it could be argued that this does not cross privilege boundaries in typical installations, since the code being installed could perform the same actions.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Php Group Pear | =1.4.0a4 | |
| Php Group Pear | =1.3b5 | |
| Php Group Pear | =1.2b2 | |
| Php Group Pear | =1.4.0a10 | |
| Php Group Pear | =1.4.3 | |
| Php Group Pear | =1.3b6 | |
| Php Group Pear | =1.3b3 | |
| Php Group Pear | =1.4.0a6 | |
| Php Group Pear | =1.4.0rc2 | |
| Php Group Pear | =1.3.3 | |
| Php Group Pear | =1.5.0a1 | |
| Php Group Pear | =1.4.11 | |
| Php Group Pear | =1.5.2 | |
| Php Group Pear | =1.4.0a5 | |
| Php Group Pear | =1.2b4 | |
| Php Group Pear | =1.4.0a12 | |
| Php Group Pear | =1.4.0a2 | |
| Php Group Pear | =1.5.3 | |
| Php Group Pear | =1.3.4 | |
| Php Group Pear | =1.4.0b1 | |
| Php Group Pear | =1.3.5 | |
| Php Group Pear | =1.5.1 | |
| Php Group Pear | =1.4.8 | |
| Php Group Pear | =1.3b2 | |
| Php Group Pear | =1.2b3 | |
| Php Group Pear | =1.0 | |
| Php Group Pear | =1.3.6 | |
| Php Group Pear | =1.3.1 | |
| Php Group Pear | =1.4.1 | |
| Php Group Pear | =1.4.0a8 | |
| Php Group Pear | =1.4.0a3 | |
| Php Group Pear | =1.4.0rc1 | |
| Php Group Pear | =1.3.3.1 | |
| Php Group Pear | =1.5.0rc2 | |
| Php Group Pear | =1.4.5 | |
| Php Group Pear | =1.2b1 | |
| Php Group Pear | =1.2 | |
| Php Group Pear | =1.3 | |
| Php Group Pear | =1.4.2 | |
| Php Group Pear | =1.5.0rc3 | |
| Php Group Pear | =1.4.0a9 | |
| Php Group Pear | =1.5.0 | |
| Php Group Pear | =1.2b5 | |
| Php Group Pear | =1.4.0b2 | |
| Php Group Pear | =1.4.0a11 | |
| Php Group Pear | =1.4.10rc1 | |
| Php Group Pear | =1.4.0a1 | |
| Php Group Pear | =1.4.7 | |
| Php Group Pear | =1.4.0a7 | |
| Php Group Pear | =1.2.1 | |
| Php Group Pear | =1.4.0 | |
| Php Group Pear | =1.0.1 | |
| Php Group Pear | =1.4.10 | |
| Php Group Pear | =1.5.0rc1 | |
| Php Group Pear | =1.4.4 | |
| Php Group Pear | =1.1 | |
| Php Group Pear | =1.3b1 | |
| Php Group Pear | =1.4.6 | |
| Php Group Pear | =1.4.9 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://pear.php.net/advisory-20070507.txt
- http://pear.php.net/news/vulnerability2.php
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:110
- http://www.ubuntu.com/usn/usn-462-1
- http://www.securityfocus.com/bid/24111
- http://secunia.com/advisories/25372
- http://osvdb.org/42108
- http://www.vupen.com/english/advisories/2007/1926
- https://exchange.xforce.ibmcloud.com/vulnerabilities/34482
- collector/nvd-historical
- collector/nvd-index
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/php group
- canonical/php group pear
- version/php group pear/1.4.0a4
- version/php group pear/1.3b5
- version/php group pear/1.2b2
- version/php group pear/1.4.0a10
- version/php group pear/1.4.3
- version/php group pear/1.3b6
- version/php group pear/1.3b3
- version/php group pear/1.4.0a6
- version/php group pear/1.4.0rc2
- version/php group pear/1.3.3
- version/php group pear/1.5.0a1
- version/php group pear/1.4.11
- version/php group pear/1.5.2
- version/php group pear/1.4.0a5
- version/php group pear/1.2b4
- version/php group pear/1.4.0a12
- version/php group pear/1.4.0a2
- version/php group pear/1.5.3
- version/php group pear/1.3.4
- version/php group pear/1.4.0b1
- version/php group pear/1.3.5
- version/php group pear/1.5.1
- version/php group pear/1.4.8
- version/php group pear/1.3b2
- version/php group pear/1.2b3
- version/php group pear/1.0
- version/php group pear/1.3.6
- version/php group pear/1.3.1
- version/php group pear/1.4.1
- version/php group pear/1.4.0a8
- version/php group pear/1.4.0a3
- version/php group pear/1.4.0rc1
- version/php group pear/1.3.3.1
- version/php group pear/1.5.0rc2
- version/php group pear/1.4.5
- version/php group pear/1.2b1
- version/php group pear/1.2
- version/php group pear/1.3
- version/php group pear/1.4.2
- version/php group pear/1.5.0rc3
- version/php group pear/1.4.0a9
- version/php group pear/1.5.0
- version/php group pear/1.2b5
- version/php group pear/1.4.0b2
- version/php group pear/1.4.0a11
- version/php group pear/1.4.10rc1
- version/php group pear/1.4.0a1
- version/php group pear/1.4.7
- version/php group pear/1.4.0a7
- version/php group pear/1.2.1
- version/php group pear/1.4.0
- version/php group pear/1.0.1
- version/php group pear/1.4.10
- version/php group pear/1.5.0rc1
- version/php group pear/1.4.4
- version/php group pear/1.1
- version/php group pear/1.3b1
- version/php group pear/1.4.6
- version/php group pear/1.4.9