Title: Multiple Vendor PHPLIB Remote Script Execution Vulnerability
Severity: HIGH
Description:
The PHP Base Library('PHPLIB') is a code library which provides support for session management in web applications. It is targeted to developers and is widely used in many web applications, so a strong possibility exists that an application may be using it without the knowledge of the administrator.
In certain scripts, remote attackers may submit an arbitrary value for the array element $_PHPLIB[libdir]. $_PHPLIB is used to define the location of PHP files that are to be 'included' as code libraries.
Properly exploited, a remote attacker may submit a value in a web request to an application using PHPLIB. The user-supplied input will point to a malicious script on another host, which will then be downloaded and executed by the PHP interpreter.
This vulnerability may allow for remote attackers to gain local access to target webservers. With local access, it is significantly easier to gain control over the server.
Affected Products:
- Horde IMP 2.0.0
- Horde IMP 2.2.0
- Horde IMP 2.2.1
- Horde IMP 2.2.2
- Horde IMP 2.2.3
- Horde IMP 2.2.4
- Horde IMP 2.2.5
- PHPLib Team PHPLIB 7.2.0
- PHPLib Team PHPLIB 7.2.0b
- PHPLib Team PHPLIB 7.2.0c
- PHPLib Team PHPLIB 7.2.1
- Trustix Secure Linux 1.1.0
- Trustix Secure Linux 1.2.0
- Trustix Secure Linux 1.5.0
References:
- Horde Project: Horde Homepage
- PHPLib Team: PHPLIB Homepage
Juniper Networks provides this content via a wide variety of sources and production methods. If notified of errors or omissions in the content of this page, Juniper Networks, at its discretion, will modify or remove the page or leave the content as is, depending on various factors including but not limited to the reputation and authority of the party providing the notification. Please use the contact information displayed elsewhere on this page to report any errors or omissions regarding the content on this page.
