CVE-2017-15806

The send function in the ezcMailMtaTransport class in Zeta Components Mail before 1.8.2 does not properly restrict the set of characters used in the ezcMail returnPath property, which might allow remote attackers to execute arbitrary code via a crafted email address, as demonstrated by one containing "-X/path/to/wwwroot/file.php."
References
Link Resource
http://www.securityfocus.com/bid/101866 Third Party Advisory VDB Entry
https://github.com/zetacomponents/Mail/issues/58 Issue Tracking Third Party Advisory
https://github.com/zetacomponents/Mail/releases/tag/1.8.2 Issue Tracking Release Notes Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/ Issue Tracking Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/ Issue Tracking Third Party Advisory
https://www.exploit-db.com/exploits/43155/ Issue Tracking Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/101866 Third Party Advisory VDB Entry
https://github.com/zetacomponents/Mail/issues/58 Issue Tracking Third Party Advisory
https://github.com/zetacomponents/Mail/releases/tag/1.8.2 Issue Tracking Release Notes Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/ Issue Tracking Third Party Advisory
https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/ Issue Tracking Third Party Advisory
https://www.exploit-db.com/exploits/43155/ Issue Tracking Third Party Advisory VDB Entry
Configurations

Configuration 1 (hide)

cpe:2.3:a:zetacomponents:mail:*:*:*:*:*:*:*:*

History

21 Nov 2024, 03:15

Type Values Removed Values Added
References () http://www.securityfocus.com/bid/101866 - Third Party Advisory, VDB Entry () http://www.securityfocus.com/bid/101866 - Third Party Advisory, VDB Entry
References () https://github.com/zetacomponents/Mail/issues/58 - Issue Tracking, Third Party Advisory () https://github.com/zetacomponents/Mail/issues/58 - Issue Tracking, Third Party Advisory
References () https://github.com/zetacomponents/Mail/releases/tag/1.8.2 - Issue Tracking, Release Notes, Third Party Advisory () https://github.com/zetacomponents/Mail/releases/tag/1.8.2 - Issue Tracking, Release Notes, Third Party Advisory
References () https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/ - Issue Tracking, Third Party Advisory () https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-critical-rce-vulnerability/ - Issue Tracking, Third Party Advisory
References () https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/ - Issue Tracking, Third Party Advisory () https://kay-malwarebenchmark.github.io/blog/cve-2017-15806-yuan-cheng-dai-ma-zhi-xing-lou-dong/ - Issue Tracking, Third Party Advisory
References () https://www.exploit-db.com/exploits/43155/ - Issue Tracking, Third Party Advisory, VDB Entry () https://www.exploit-db.com/exploits/43155/ - Issue Tracking, Third Party Advisory, VDB Entry

Information

Published : 2017-11-15 16:29

Updated : 2024-11-21 03:15


NVD link : CVE-2017-15806

Mitre link : CVE-2017-15806

CVE.ORG link : CVE-2017-15806


JSON object : View

Products Affected

zetacomponents

  • mail
CWE
CWE-94

Improper Control of Generation of Code ('Code Injection')