CVE-2017-15806

Опубликовано: 15 нояб. 2017

Источник: nvd

CVSS3: 8.1

CVSS2: 6.8

EPSS Средний

Описание

The send function in the ezcMailMtaTransport class in Zeta Components Mail before 1.8.2 does not properly restrict the set of characters used in the ezcMail returnPath property, which might allow remote attackers to execute arbitrary code via a crafted email address, as demonstrated by one containing "-X/path/to/wwwroot/file.php."

Ссылки

http://www.securityfocus.com/bid/101866
Third Party Advisory
VDB Entry
https://github.com/zetacomponents/Mail/issues/58
Issue Tracking
Third Party Advisory
https://github.com/zetacomponents/Mail/releases/tag/1.8.2
Issue Tracking
Release Notes
Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/
Issue Tracking
Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/43155/
Issue Tracking
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/101866
Third Party Advisory
VDB Entry
https://github.com/zetacomponents/Mail/issues/58
Issue Tracking
Third Party Advisory
https://github.com/zetacomponents/Mail/releases/tag/1.8.2
Issue Tracking
Release Notes
Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/
Issue Tracking
Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/
Issue Tracking
Third Party Advisory
https://www.exploit-db.com/exploits/43155/
Issue Tracking
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:zetacomponents:mail:*:*:*:*:*:*:*:*

Версия до 1.8.2 (исключая)

EPSS

Процентиль: 95%

0.20401

Средний

8.1 High

CVSS3

6.8 Medium

CVSS2

Дефекты

CWE-94

Связанные уязвимости

GHSA-hgr8-g756-vmg9