FKIE_CVE-2008-3922

Vulnerability from fkie_nvd - Published: 2008-09-04 18:41 - Updated: 2025-04-09 00:30
Severity ?
Summary
awstatstotals.php in AWStats Totals 1.0 through 1.14 allows remote attackers to execute arbitrary code via PHP sequences in the sort parameter, which is used by the multisort function when dynamically creating an anonymous PHP function.
References
cve@mitre.orghttp://secunia.com/advisories/31630Vendor Advisory
cve@mitre.orghttp://securityreason.com/securityalert/4218
cve@mitre.orghttp://securityreason.com/securityalert/8259
cve@mitre.orghttp://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt
cve@mitre.orghttp://www.exploit-db.com/exploits/17324
cve@mitre.orghttp://www.securityfocus.com/archive/1/495770/100/0/threaded
cve@mitre.orghttp://www.securityfocus.com/bid/30856
cve@mitre.orghttp://www.telartis.nl/xcms/awstats/Patch
cve@mitre.orghttp://www.vupen.com/english/advisories/2008/2442
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/44712
cve@mitre.orghttps://www.exploit-db.com/exploits/6368
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/31630Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/4218
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/8259
af854a3a-2127-422b-91ae-364da2661108http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/17324
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/495770/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/30856
af854a3a-2127-422b-91ae-364da2661108http://www.telartis.nl/xcms/awstats/Patch
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/2442
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/44712
af854a3a-2127-422b-91ae-364da2661108https://www.exploit-db.com/exploits/6368
Impacted products
Vendor Product Version
telartis_bv awstats_totals 1.0
telartis_bv awstats_totals 1.1
telartis_bv awstats_totals 1.11
telartis_bv awstats_totals 1.13
telartis_bv awstats_totals 1.14
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:telartis_bv:awstats_totals:1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "EB4AC543-C314-40F1-9DE7-80BC7CE8CFD2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:telartis_bv:awstats_totals:1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "333F1513-9A70-4688-99A4-A9762D601AAE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:telartis_bv:awstats_totals:1.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "51AEF1B6-8C0A-4887-A627-2EE3B533216F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:telartis_bv:awstats_totals:1.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "567AC813-9B48-41CE-B289-E2ACB6AE5EA7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:telartis_bv:awstats_totals:1.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "9A3E6A6E-668B-463D-BCF3-45A86D7F5ACE",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "awstatstotals.php in AWStats Totals 1.0 through 1.14 allows remote attackers to execute arbitrary code via PHP sequences in the sort parameter, which is used by the multisort function when dynamically creating an anonymous PHP function."
    },
    {
      "lang": "es",
      "value": "awstatstotals.php de AWStats Totals 1.0 hasta 1.14, permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de secuencias PHP en el par\u00e1metro sort que se emplea en la funci\u00f3n multisort cuando de forma din\u00e1mica se crea una funci\u00f3n PHP an\u00f3nima."
    }
  ],
  "id": "CVE-2008-3922",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 9.3,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2008-09-04T18:41:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/31630"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/4218"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securityreason.com/securityalert/8259"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.exploit-db.com/exploits/17324"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/495770/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/30856"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.telartis.nl/xcms/awstats/"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2008/2442"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44712"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://www.exploit-db.com/exploits/6368"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/31630"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/4218"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securityreason.com/securityalert/8259"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://userwww.service.emory.edu/~ekenda2/EMORY-2008-01.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.exploit-db.com/exploits/17324"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/495770/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/30856"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.telartis.nl/xcms/awstats/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2008/2442"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44712"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://www.exploit-db.com/exploits/6368"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-94"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.