HTTP: PHP XML Command Execution
This signature detects attempts to exploit a known vulnerability against an XML transmission. Attackers can craft a malicious command injection that can lead to arbitrary code execution within the context of the Web server. Multiple Content Management Systems using PHP might be vulnerable to this family of attacks.
Extended Description
XML-RPC for PHP is affected by a remote code-injection vulnerability. An attacker may exploit this issue to execute arbitrary commands or code in the context of the webserver. This may facilitate various attacks, including unauthorized remote access. XML-RPC for PHP 1.1 and prior versions are affected by this issue. Other applications using this library are also affected.
Affected Products
Nucleus_cms nucleus_cms
References
BugTraq: 14088
CVE: CVE-2005-1921
URL: http://www.gulftech.org/?node=research&article_id=00088-07022005
Short Name
HTTP:PHP:PHP-XML-CMD
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2005-1921 Command Execution PHP XML bid:14088
Release Date
07/07/2005
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Blog:cms
Nucleus_cms
Conectiva
Seagull_php_framework
Phpadsnew
Trustix
Phpgroupware
Egroupware
Tikiwiki_project
Wordpress
Phpwebsite
Ampache
Phppgads
Hp
Pear
Civicspace_labs
Maxdev
Ubuntu
Php
Debian
Mysql_ab
Drupal
Xoops
Mandriva
Php-wiki
Xml-rpc_for_php
Red_hat
Suse
Sgi
Mailwatch_for_mailscanner
Freemed_software
S9y
B2evolution
Postnuke
Phpmyfaq
CVSS Score
7.5