Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
freebsdFreeBSD56BA8728-F987-11DE-B28D-00215C6A37BB
HistoryNov 14, 2009 - 12:00 a.m.

PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection

2009-11-1400:00:00
vuxml.freebsd.org
29

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.011

Percentile

84.8%

JSON

PEAR Security Advisory reports:

Multiple remote arbitrary command injections have been
found in the Net_Ping and Net_Traceroute.
When input from forms are used directly, the attacker
could pass variables that would allow him to execute
remote arbitrary command injections.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchpear-net_ping< 2.4.5UNKNOWN
FreeBSDanynoarchpear-net_traceroute< 0.21.2UNKNOWN

Related

openvas 6
nessus 9
securityvulns 2
nvd 2
fedora 6
prion 2
cve 2
cvelist 2
gentoo 1
osv 1
ubuntucve 1
debian 1
openvas
openvas
FreeBSD Ports: pear-Net_Ping
2010-01-07 00:00:00
FreeBSD Ports: pear-Net_Ping
2010-01-07 00:00:00
Gentoo Security Advisory GLSA 200911-06 (PEAR-Net_Traceroute)
2009-12-03 00:00:00
nessus
nessus
FreeBSD : PEAR -- Net_Ping and Net_Traceroute remote arbitrary command injection (56ba8728-f987-11de-b28d-00215c6a37bb)
2010-01-05 00:00:00
Fedora 11 : php-pear-Net-Traceroute-0.21.2-1.fc11 (2009-11617)
2009-11-30 00:00:00
Fedora 10 : php-pear-Net-Traceroute-0.21.2-1.fc10 (2009-12083)
2009-11-30 00:00:00
securityvulns
securityvulns
[ GLSA 200911-06 ] PEAR Net_Traceroute: Command injection
2009-12-01 00:00:00
PHP multiple security vulnerabilities
2009-12-01 00:00:00
nvd
nvd
CVE-2009-4025
2009-11-29 13:07:35
CVE-2009-4024
2009-11-29 13:07:35
fedora
fedora
[SECURITY] Fedora 12 Update: php-pear-Net-Traceroute-0.21.2-1.fc12
2009-11-25 15:25:36
[SECURITY] Fedora 11 Update: php-pear-Net-Traceroute-0.21.2-1.fc11
2009-11-25 15:05:12
[SECURITY] Fedora 10 Update: php-pear-Net-Traceroute-0.21.2-1.fc10
2009-11-25 15:06:06
prion
prion
Design/Logic Flaw
2009-11-29 13:07:00
Design/Logic Flaw
2009-11-29 13:07:00
cve
cve
CVE-2009-4025
2009-11-29 13:07:35
CVE-2009-4024
2009-11-29 13:07:35
cvelist
cvelist
CVE-2009-4025
2009-11-28 17:00:00
CVE-2009-4024
2009-11-28 17:00:00
gentoo
gentoo
PEAR Net_Traceroute: Command injection
2009-11-26 00:00:00
osv
osv
php-net-ping - arbitrary code execution
2009-12-12 00:00:00
ubuntucve
ubuntucve
CVE-2009-4024
2009-11-29 00:00:00
debian
debian
[SECURITY] [DSA 1949-1] New php-net-ping packages fix arbitrary code execution
2009-12-12 08:52:41

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS

0.011

Percentile

84.8%

JSON
Related for 56BA8728-F987-11DE-B28D-00215C6A37BB
openvas6nessus9securityvulns2nvd2fedora6prion2cve2cvelist2gentoo1osv1ubuntucve1debian1