The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

New PHP Bug

Discussion in 'General Discussion' started by mesranet, Nov 28, 2005.

  1. mesranet

    mesranet Well-Known Member

    Joined:
    May 6, 2002
    Messages:
    126
    Likes Received:
    0
    Trophy Points:
    16
    Hi,

    How Cpanel gonna handle this matter ? Any advice to prevent yhis?


    TITLE:
    PHP "mb_send_mail()" "To:" Header Injection Vulnerability

    SECUNIA ADVISORY ID:
    SA17763

    VERIFY ADVISORY:
    http://secunia.com/advisories/17763/

    CRITICAL:
    Moderately critical

    IMPACT:
    Security Bypass, Manipulation of data

    WHERE:
    >From remote

    SOFTWARE:
    PHP 4.4.x
    http://secunia.com/product/5768/
    PHP 5.0.x
    http://secunia.com/product/3919/

    DESCRIPTION:
    s.masugata has reported a vulnerability in PHP, which potentially can
    be exploited by malicious people to use it as an open mail relay.

    The vulnerability is caused due to an input validation error in the
    "mb_send_mail()" function. This can be exploited to inject arbitrary
    headers in a mail sent via a script calling the "mb_send_mail()"
    function where the "To" parameter can be controlled by the attacker.

    SOLUTION:
    Update to version 5.1.0.
    http://www.php.net/downloads.php

    Do not call the "mb_send_mail()" function in scripts where input
    passed to the "To" parameter originates from untrusted sources.

    PROVIDED AND/OR DISCOVERED BY:
    s.masugata

    ORIGINAL ADVISORY:
    The PHP Group:
    http://www.php.net/release_5_1_0.php

    s.masugata:
    http://bugs.php.net/bug.php?id=35307
     
  2. chirpy

    chirpy Well-Known Member

    Joined:
    Jun 15, 2002
    Messages:
    13,475
    Likes Received:
    20
    Trophy Points:
    38
    Location:
    Go on, have a guess
    Well, as far as v4.4.x is concerned, it states in the bug ticket "This issue has already been fixed
    in the latest released version of PHP". So, presumably, you can simply update to v4.4.1 which is available in WHM.

    As for v5.*, you'll have to create a bugzilla enhancement asking cPanel to offer a newer release.
     
Loading...

Share This Page