CVE: CVE-2008-4304

Export to Word

general/login.php in phpCollab 2.5 rc3 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in unspecified input related to the SSL_CLIENT_CERT environment variable. NOTE: in some environments, SSL_CLIENT_CERT always has a base64-encoded string value, which may impose constraints on injection for typical shells.

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.01794
Percentile: 0.81952

CVSS Scoring

CVSS v2 Score: 10.0

Severity:

Mapped CWE(s)

CWE-78 : Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

All CAPEC(s)

CAPEC-108: Command Line Execution through SQL Injection
CAPEC-15: Command Delimiters
CAPEC-43: Exploiting Multiple Input Interpretation Layers
CAPEC-6: Argument Injection
CAPEC-88: OS Command Injection

CAPEC(s) with Mapped TTPs

Mapped ATT&CK TTPs

Affected Products

cpe:2.3:a:phpcollab:phpcollab:*:rc3:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.2:*:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.3:*:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.4:*:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.5:beta_4:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.5:rc1:*:*:*:*:*:*
cpe:2.3:a:phpcollab:phpcollab:2.5:rc2:*:*:*:*:*:*

← Back to Home