Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	HTTP:PHP:PHP-XML-CMD
Severity	Major
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	PHP XML Command Execution
Release Date	2005/07/07
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

HTTP: PHP XML Command Execution

This signature detects attempts to exploit a known vulnerability against an XML transmission. Attackers can craft a malicious command injection that can lead to arbitrary code execution within the context of the Web server. Multiple Content Management Systems using PHP might be vulnerable to this family of attacks.

Extended Description

XML-RPC for PHP is affected by a remote code-injection vulnerability. An attacker may exploit this issue to execute arbitrary commands or code in the context of the webserver. This may facilitate various attacks, including unauthorized remote access. XML-RPC for PHP 1.1 and prior versions are affected by this issue. Other applications using this library are also affected.

Affected Products

Ampache ampache 3.2.0
Ampache ampache 3.2.1
Ampache ampache 3.2.2
Ampache ampache 3.2.3
Ampache ampache 3.2.4
Ampache ampache 3.3.0
Ampache ampache 3.3.1
B2evolution b2evolution 0.8.2
B2evolution b2evolution 0.8.2 .2
B2evolution b2evolution 0.8.6
B2evolution b2evolution 0.8.6 .1
B2evolution b2evolution 0.8.6 .2
B2evolution b2evolution 0.8.7
B2evolution b2evolution 0.8.9
B2evolution b2evolution 0.9.0 .0.03
B2evolution b2evolution 0.9.0 .0.05
B2evolution b2evolution 0.9.0 .0.08
B2evolution b2evolution 0.9.0 .0.09
B2evolution b2evolution 0.9.0 .0.10
B2evolution b2evolution 0.9.0 .0.11
B2evolution b2evolution 0.9.0 .0.12
Blog:cms blog:cms 3.6.2
Blog:cms blog:cms 3.6.4
Civicspace_labs civicspace 0.7.2
Civicspace_labs civicspace 0.8.0 .0.2
Civicspace_labs civicspace 0.8.0 .0.3
Civicspace_labs civicspace 0.8.0 .0.4
Civicspace_labs civicspace 0.8.0 .0.5
Civicspace_labs civicspace 0.8.1
Conectiva linux 10.0.0
Conectiva linux 9.0.0
Debian linux 3.0.0
Debian linux 3.0.0 Alpha
Debian linux 3.0.0 Arm
Debian linux 3.0.0 Hppa
Debian linux 3.0.0 Ia-32
Debian linux 3.0.0 Ia-64
Debian linux 3.0.0 M68k
Debian linux 3.0.0 Mips
Debian linux 3.0.0 Mipsel
Debian linux 3.0.0 Ppc
Debian linux 3.0.0 S/390
Debian linux 3.0.0 Sparc
Drupal drupal 4.5.0
Drupal drupal 4.5.1
Drupal drupal 4.5.2
Drupal drupal 4.5.3
Drupal drupal 4.6.0
Drupal drupal 4.6.1
Egroupware egroupware 1.0.0 .0.007
Egroupware egroupware 1.0.1
Egroupware egroupware 1.0.3
Egroupware egroupware 1.0.6
Freemed_software freemed 0.8.0 .0
Freemed_software freemed 0.8.1
Hp tru64 5.1.0 A PK6
Hp tru64 5.1.0 B-2 PK4
Hp tru64 5.1.0 B-3
Mailwatch_for_mailscanner mailwatch_for_mailscanner 0.4.0
Mailwatch_for_mailscanner mailwatch_for_mailscanner 0.5.0
Mailwatch_for_mailscanner mailwatch_for_mailscanner 0.5.1
Mailwatch_for_mailscanner mailwatch_for_mailscanner 1.0.0
Mandriva corporate_server 3.0.0
Mandriva corporate_server 3.0.0 X86 64
Mandriva linux_mandrake 10.0.0
Mandriva linux_mandrake 10.0.0 amd64
Mandriva linux_mandrake 10.1.0
Mandriva linux_mandrake 10.1.0 X86 64
Mandriva linux_mandrake 10.2.0
Mandriva linux_mandrake 10.2.0 X86 64
Maxdev md-pro 1.0.72
Mysql_ab eventum 1.5.4
Nucleus_cms nucleus_cms 3.0.0
Nucleus_cms nucleus_cms 3.0.0 1
Nucleus_cms nucleus_cms 3.0.0 RC
Nucleus_cms nucleus_cms 3.1.0
Nucleus_cms nucleus_cms 3.2.0
Pear xml_rpc 1.3.0
Pear xml_rpc 1.3.0 RC1
Pear xml_rpc 1.3.0 RC2
Pear xml_rpc 1.3.0 RC3
Php php 4.0.0 0
Php php 4.0.1
Php php 4.0.1 Pl1
Php php 4.0.1 Pl2
Php php 4.0.2
Php php 4.0.3
Php php 4.0.3 Pl1
Php php 4.0.4
Php php 4.0.5
Php php 4.0.6
Php php 4.0.7
Php php 4.0.7 RC1
Php php 4.0.7 RC2
Php php 4.0.7 RC3
Php php 4.1.0 .0
Php php 4.1.1
Php php 4.1.2
Php php 4.2.0 .0
Php php 4.2.0 -Dev
Php php 4.2.1
Php php 4.2.2
Php php 4.2.3
Php php 4.3.0
Php php 4.3.1
Php php 4.3.10
Php php 4.3.11
Php php 4.3.2
Php php 4.3.3
Php php 4.3.4
Php php 4.3.5
Php php 4.3.6
Php php 4.3.7
Php php 4.3.8
Php php 4.3.9
Phpadsnew phpadsnew 2.0.0 beta 5
Phpadsnew phpadsnew 2.0.0 beta 6
Phpadsnew phpadsnew 2.0.4 -pr1
Phpadsnew phpadsnew 2.0.4 -Pr2
Phpadsnew phpadsnew 2 dev 09102001
Phpadsnew phpadsnew 2 dev 30092001
Phpgroupware phpgroupware 0.9.12
Phpgroupware phpgroupware 0.9.13
Phpgroupware phpgroupware 0.9.14
Phpgroupware phpgroupware 0.9.14 .001
Phpgroupware phpgroupware 0.9.14 .002
Phpgroupware phpgroupware 0.9.14 .003
Phpgroupware phpgroupware 0.9.14 .004
Phpgroupware phpgroupware 0.9.14 .005
Phpgroupware phpgroupware 0.9.14 .006
Phpgroupware phpgroupware 0.9.14 .007
Phpgroupware phpgroupware 0.9.16 .000
Phpgroupware phpgroupware 0.9.16 .002
Phpgroupware phpgroupware 0.9.16 .003
Phpgroupware phpgroupware 0.9.16 .005
Phpgroupware phpgroupware 0.9.16 .006
Phpgroupware phpgroupware 0.9.16 RC1
Phpgroupware phpgroupware 0.9.16 RC2
Phpgroupware phpgroupware 0.9.16 RC3
Phpmyfaq phpmyfaq 1.4.0
Phpmyfaq phpmyfaq 1.4.0 A
Phpmyfaq phpmyfaq 1.4.0 -Alpha 1
Phpmyfaq phpmyfaq 1.4.0 -Alpha 2
Phpmyfaq phpmyfaq 1.4.1
Phpmyfaq phpmyfaq 1.4.2
Phpmyfaq phpmyfaq 1.4.3
Phpmyfaq phpmyfaq 1.4.4
Phpmyfaq phpmyfaq 1.4.5
Phpmyfaq phpmyfaq 1.4.6
Phpmyfaq phpmyfaq 1.4.7
Phpmyfaq phpmyfaq 1.4.8
Phpmyfaq phpmyfaq 1.5.0 Alpha1
Phpmyfaq phpmyfaq 1.5.0 Alpha2
Phpmyfaq phpmyfaq 1.5.0 Beta1
Phpmyfaq phpmyfaq 1.5.0 Beta2
Phpmyfaq phpmyfaq 1.5.0 Beta3
Phpmyfaq phpmyfaq 1.5.0 RC1
Phpmyfaq phpmyfaq 1.5.0 RC2
Phpmyfaq phpmyfaq 1.5.0 RC3
Phpmyfaq phpmyfaq 1.5.0 RC4
Phppgads phppgads 2.0.0
Phppgads phppgads 2.0.6
Phpwebsite phpwebsite 0.10.0
Phpwebsite phpwebsite 0.10.1
Phpwebsite phpwebsite 0.9.3
Phpwebsite phpwebsite 0.9.3 -1
Phpwebsite phpwebsite 0.9.3 -2
Phpwebsite phpwebsite 0.9.3 -3
Phpwebsite phpwebsite 0.9.3 -4
Php-wiki php-wiki 1.2.0
Php-wiki php-wiki 1.2.1
Php-wiki php-wiki 1.2.2
Php-wiki php-wiki 1.3.1
Php-wiki php-wiki 1.3.10
Php-wiki php-wiki 1.3.11 Rc2
Php-wiki php-wiki 1.3.11 Rc3
Php-wiki php-wiki 1.3.2
Php-wiki php-wiki 1.3.3
Php-wiki php-wiki 1.3.9
Postnuke postnuke 0.75.0
Postnuke postnuke 0.76.0 RC4
Postnuke postnuke 0.76.0 RC4a
Postnuke postnuke 0.76.0 RC4b
Red_hat desktop 3.0.0
Red_hat desktop 4.0.0
Red_hat enterprise_linux_as 3
Red_hat enterprise_linux_as 4
Red_hat enterprise_linux_es 3
Red_hat enterprise_linux_es 4
Red_hat enterprise_linux_ws 3
Red_hat enterprise_linux_ws 4
Red_hat fedora Core1
Red_hat fedora Core2
Red_hat fedora Core3
Red_hat fedora Core4
S9y serendipity 0.8.0
S9y serendipity 0.8.0 -Beta5
S9y serendipity 0.8.0 -Beta6
S9y serendipity 0.8.0 -Beta6 Snapshot
S9y serendipity 0.8.1
Seagull_php_framework seagull_php_framework 0.4.0
Seagull_php_framework seagull_php_framework 0.4.0 Dev1
Seagull_php_framework seagull_php_framework 0.4.0 Dev2
Seagull_php_framework seagull_php_framework 0.4.0 Dev3
Seagull_php_framework seagull_php_framework 0.4.1
Seagull_php_framework seagull_php_framework 0.4.2
Seagull_php_framework seagull_php_framework 0.4.3
Sgi propack 3.0.0 SP6
Suse linux_desktop 1.0.0
Suse linux_personal 8.2.0
Suse linux_personal 9.0.0
Suse linux_personal 9.0.0 X86 64
Suse linux_personal 9.1.0
Suse linux_personal 9.1.0 X86 64
Suse linux_personal 9.2.0
Suse linux_personal 9.2.0 X86 64
Suse linux_personal 9.3.0
Suse linux_personal 9.3.0 X86 64
Suse linux_professional 8.2.0
Suse linux_professional 9.0.0
Suse linux_professional 9.0.0 X86 64
Suse linux_professional 9.1.0
Suse linux_professional 9.1.0 X86 64
Suse linux_professional 9.2.0
Suse linux_professional 9.2.0 X86 64
Suse linux_professional 9.3.0
Suse linux_professional 9.3.0 X86 64
Suse novell_linux_desktop 9.0.0
Suse open-enterprise-server 9.0.0
Suse suse_linux_enterprise_server 8
Suse suse_linux_enterprise_server 9
Suse suse_linux_openexchange_server 4.0.0
Suse suse_linux_retail_solution 8.0.0
Suse suse_linux_school_server_for_i386
Suse suse_linux_standard_server 8.0.0
Tikiwiki_project tikiwiki 1.6.1
Tikiwiki_project tikiwiki 1.7.1 .1
Tikiwiki_project tikiwiki 1.7.2
Tikiwiki_project tikiwiki 1.7.3
Tikiwiki_project tikiwiki 1.7.4
Tikiwiki_project tikiwiki 1.7.5
Tikiwiki_project tikiwiki 1.7.6
Tikiwiki_project tikiwiki 1.7.7
Tikiwiki_project tikiwiki 1.7.8
Tikiwiki_project tikiwiki 1.7.9
Tikiwiki_project tikiwiki 1.8.0
Tikiwiki_project tikiwiki 1.8.1
Tikiwiki_project tikiwiki 1.8.2
Tikiwiki_project tikiwiki 1.8.3
Tikiwiki_project tikiwiki 1.8.4
Trustix secure_enterprise_linux 2.0.0
Trustix secure_linux 2.1.0
Trustix secure_linux 2.2.0
Trustix secure_linux 3.0.0
Ubuntu ubuntu_linux 4.1.0 Ia32
Ubuntu ubuntu_linux 4.1.0 Ia64
Ubuntu ubuntu_linux 4.1.0 Ppc
Ubuntu ubuntu_linux 5.0.0 4 Amd64
Ubuntu ubuntu_linux 5.0.0 4 I386
Ubuntu ubuntu_linux 5.0.0 4 Powerpc
Wordpress wordpress 0.7.0
Wordpress wordpress 0.71.0
Wordpress wordpress 1.2.0
Wordpress wordpress 1.2.1
Wordpress wordpress 1.2.2
Wordpress wordpress 1.5.0
Wordpress wordpress 1.5.1
Wordpress wordpress 1.5.1 .2
Xml-rpc_for_php xml-rpc_for_php 1.0.0
Xml-rpc_for_php xml-rpc_for_php 1.0.0 1
Xml-rpc_for_php xml-rpc_for_php 1.0.0 2
Xml-rpc_for_php xml-rpc_for_php 1.0.99
Xml-rpc_for_php xml-rpc_for_php 1.0.99 .2
Xml-rpc_for_php xml-rpc_for_php 1.1.0
Xoops xoops 2.0.0
Xoops xoops 2.0.1
Xoops xoops 2.0.10
Xoops xoops 2.0.11
Xoops xoops 2.0.12
Xoops xoops 2.0.2
Xoops xoops 2.0.3
Xoops xoops 2.0.5
Xoops xoops 2.0.5 .1
Xoops xoops 2.0.5 .2
Xoops xoops 2.0.9 .2
Xoops xoops 2.0.9 .3

References

BugTraq: 14088
CVE: CVE-2005-1921
URL: http://www.gulftech.org/?node=research&article_id=00088-07022005

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: PHP XML Command Execution

Extended Description

Affected Products

References