|Category:||Red Hat Local Security Checks|
|Title:||RedHat Security Advisory RHSA-2005:748|
The remote host is missing updates announced in
A bug was discovered in the PEAR XML-RPC Server package included in PHP. If
a PHP script is used which implements an XML-RPC Server using the PEAR
XML-RPC package, then it is possible for a remote attacker to construct an
XML-RPC request which can cause PHP to execute arbitrary PHP commands as
the 'apache' user. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CVE-2005-2498 to this issue.
When using the default SELinux targeted policy on Red Hat Enterprise
Linux 4, the impact of this issue is reduced since the scripts executed by
PHP are constrained within the httpd_sys_script_t security context.
Users of PHP should upgrade to these updated packages, which contain
backported fixes for these issues.
Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date
Risk factor : Medium
BugTraq ID: 14560|
Common Vulnerability Exposure (CVE) ID: CVE-2005-2498
Bugtraq: 20050815 Advisory 15/2005: PHPXMLRPC Remote PHP Code Injection Vulnerability (Google Search)
Bugtraq: 20050815 [DRUPAL-SA-2005-004] Drupal 4.6.3 / 4.5.5 fixes critical XML-RPC issue (Google Search)
Bugtraq: 20050817 [PHPADSNEW-SA-2005-001] phpAdsNew and phpPgAds 2.0.6 fix multiple vulnerabilities (Google Search)
Debian Security Information: DSA-789 (Google Search)
Debian Security Information: DSA-798 (Google Search)
Debian Security Information: DSA-840 (Google Search)
Debian Security Information: DSA-842 (Google Search)
SuSE Security Announcement: SUSE-SA:2005:049 (Google Search)
SuSE Security Announcement: SUSE-SA:2005:051 (Google Search)
|Copyright||Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com|
|This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.