Lucene search

K

MitreCVELIST:CVE-2008-5619

HistoryDec 17, 2008 - 2:00 a.m.

CVE-2008-5619

2008-12-1702:00:00

mitre

www.cve.org

4

7.7 High

AI Score

Confidence

High

0.862 High

EPSS

Percentile

98.6%

html2text.php in Chuggnutt HTML to Text Converter, as used in PHPMailer before 5.2.10, RoundCube Webmail (roundcubemail) 0.2-1.alpha and 0.2-3.beta, Mahara, and AtMail Open 1.03, allows remote attackers to execute arbitrary code via crafted input that is processed by the preg_replace function with the eval switch.

References

mahara.org/interaction/forum/topic.php?id=533

osvdb.org/53893

secunia.com/advisories/33145

secunia.com/advisories/33170

secunia.com/advisories/34789

sourceforge.net/forum/forum.php?forum_id=898542

trac.roundcube.net/changeset/2148

trac.roundcube.net/ticket/1485618

www.openwall.com/lists/oss-security/2008/12/12/1

www.securityfocus.com/archive/1/499489/100/0/threaded

www.vupen.com/english/advisories/2008/3418

www.vupen.com/english/advisories/2008/3419

github.com/PHPMailer/PHPMailer/commit/8beacc646acb67c995aea10ac5585970efc7355a

www.exploit-db.com/exploits/7549

www.exploit-db.com/exploits/7553

www.redhat.com/archives/fedora-package-announce/2008-December/msg00783.html

www.redhat.com/archives/fedora-package-announce/2008-December/msg00802.html

7.7 High

AI Score

Confidence

High

0.862 High

EPSS

Percentile

98.6%

Related for CVELIST:CVE-2008-5619

freebsd1 openvas13 packetstorm2 exploitpack2 securityvulns2 seebug4 dsquare1 osv1 ubuntucve1 nessus5 cve1 debiancve1 nvd1 checkpoint_advisories1 prion1 canvas1 github1 exploitdb2 ubuntu1