|
PHP-Nuke mail CRLF injection
|
|
|
|
|
Secunia Advisory:
|
SA7776
|
|
|
Release Date:
|
2002-12-23
|
|
|
Critical:
|
Less critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From remote
|
|
Solution Status:
|
Unpatched
|
|
| Software: | PHP-Nuke 6.x
|
|
|
This advisory is currently marked as unpatched!
- Companies can be alerted when a patch is released! |
|
|
Description:
PHP-Nuke does not verify input to various mail functions correctly, this can be abused by people to send arbitrary emails in an anonymous fasion, this could be abused to spamming.
The problem is that the From and Reply-To headers aren't stripped for malicious characters, like CR and LF.
Solution:
Edit the source code, so that all input to the mail function is handled properly.
Provided and/or discovered by:
Ulf Harnhammar
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
32 Related Secunia Security Advisories, displaying 10
|
|
|
1. PHP-Nuke Anti-Cross-Site Request Forgery Routine Bypass Vulnerability
|
|
2. PHP-Nuke HTTP "referer" SQL Injection Vulnerability
|
|
3. PHP-Nuke CAPTCHA Bypass Weakness
|
|
4. PHP-Nuke "Your_Account" Module SQL Injection Vulnerability
|
|
5. PHP-Nuke "pagetitle" Cross-Site Scripting Vulnerability
|
|
6. PHP-Nuke Multiple SQL Injection Vulnerabilities
|
|
7. PHP-Nuke Cross-Site Scripting Vulnerabilities
|
|
8. PHP-Nuke Multiple Vulnerabilities
|
|
9. PHP-Nuke Direct Script Access Restriction Bypass Weakness
|
|
10. PHP-Nuke Multiple Vulnerabilities
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
