PT-2006-3601 · Socketmail · Socketmail

Published

2006-05-31

Updated

2017-07-20

CVE-2006-2681

CVSS v2.0

6.8

Medium

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions SocketMail Lite and Pro versions 2.2.6 and earlier

Description A remote file inclusion issue allows attackers to execute arbitrary PHP code when register globals and magic quotes are enabled. This can be achieved by providing a URL in the site path parameter to API endpoints such as "index.php" and "inc-common.php".

Recommendations For SocketMail Lite and Pro versions 2.2.6 and earlier, consider disabling the register globals and magic quotes settings to mitigate the risk of exploitation. As a temporary workaround, restrict access to the "index.php" and "inc-common.php" files until a patch is available. Avoid using the site path parameter in the affected API endpoints until the issue is resolved.

Exploit

Fix

Code Injection

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-94

Related Identifiers

CVE-2006-2681

Affected Products

Socketmail

PT-2006-3601 · Socketmail · Socketmail

CVE-2006-2681

Weakness Enumeration

Related Identifiers

Affected Products

References · 7