FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2008-4687

This CVE name corresponds to:

Entered Topic
2008-12-06 mantis -- php code execution vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2008-4687
Phase Assigned(20081022)

Description

manage_proj_page.php in Mantis before 1.1.4 allows remote authenticated users to execute arbitrary code via a sort parameter containing PHP sequences, which are processed by create_function within the multi_sort function in core/utility_api.php.

References

Source Reference
MILW0RM 6768
MLIST [oss-security] 20081019 CVE request: mantisbt < 1.1.4: RCE
CONFIRM http://mantisbt.svn.sourceforge.net/viewvc/mantisbt/branches/BRANCH_1_1_0/mantisbt/core/utility_api.php?r1=5679&r2=5678&pathrev=5679
CONFIRM http://www.mantisbt.org/bugs/changelog_page.php
CONFIRM http://www.mantisbt.org/bugs/view.php?id=0009704
CONFIRM https://bugs.gentoo.org/show_bug.cgi?id=242722
GENTOO GLSA-200812-07
BID 31789
SECUNIA 32314
SECUNIA 32975
SREASON 4470
XF mantis-sort-code-execution(45942)