CVE-2008-2478

Current Description

** DISPUTED ** scripts/wwwacct in cPanel 11.18.6 STABLE and earlier and 11.23.1 CURRENT and earlier allows remote authenticated users with reseller privileges to execute arbitrary code via shell metacharacters in the Email address field (aka Email text box). NOTE: the vendor disputes this, stating "I'm unable to reproduce such an issue on multiple servers running different versions of cPanel."

Basic Data

PublishedMay 28, 2008
Last ModifiedOctober 11, 2018
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-94
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:S/C:C/I:C/A:C
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationSINGLE
CVSS 2 - Confidentiality ImpactCOMPLETE
CVSS 2 - Availability ImpactCOMPLETE
CVSS 2 - Base Score8.5
SeverityHIGH
Exploitability Score6.8
Impact Score10.0
Obtain All Privilegetrue
Obtain User Privilegefalse
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationCpanelCpanel*stable******11.8.6
    2.3ApplicationCpanelCpanel*current******11.23.1

Vulnerable Software List

VendorProductVersions
Cpanel Cpanel *

References

NameSourceURLTags
20080518 Cpanel all version >> root access with a reseller account.http://www.securityfocus.com/archive/1/492223/100/0/threadedBUGTRAQ
20080519 Re: Cpanel all version >> root access with a reseller account.http://www.securityfocus.com/archive/1/492259/100/0/threadedBUGTRAQ
29277http://www.securityfocus.com/bid/29277BIDExploit
1020042http://www.securitytracker.com/id?1020042SECTRACK
cpanel-wwwact-privilege-escalation(42529)https://exchange.xforce.ibmcloud.com/vulnerabilities/42529XF