CVE-2005-3883

Опубликовано: 29 нояб. 2005

Источник: debian

EPSS Низкий

Описание

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php4	fixed	4:4.4.2-1		package
php5	fixed	5.1.1-1		package
php4	no-dsa		sarge	package

EPSS

Процентиль: 86%

0.03153

Низкий

Связанные уязвимости

CVE-2005-3883

ubuntu

больше 19 лет назад

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.

CVE-2005-3883

redhat

больше 19 лет назад

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.

CVE-2005-3883

nvd

больше 19 лет назад

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.

GHSA-86x4-8rw8-w2mr

github

около 3 лет назад

CRLF injection vulnerability in the mb_send_mail function in PHP before 5.1.0 might allow remote attackers to inject arbitrary e-mail headers via line feeds (LF) in the "To" address argument.

EPSS

Процентиль: 86%

0.03153

Низкий