ByteOS Network

Vulnerability Details :

CVE-2005-1921

Assigner-redhat

Assigner Org ID-53f830b8-0a3f-465b-8143-3b8a9948e749

Published At-01 Jul, 2005 | 04:00

Updated At-07 Aug, 2024 | 22:06

Eval injection vulnerability in PEAR XML_RPC 1.3.0 and earlier (aka XML-RPC or xmlrpc) and PHPXMLRPC (aka XML-RPC For PHP or php-xmlrpc) 1.1 and earlier, as used in products such as (1) WordPress, (2) Serendipity, (3) Drupal, (4) egroupware, (5) MailWatch, (6) TikiWiki, (7) phpWebSite, (8) Ampache, and others, allows remote attackers to execute arbitrary PHP code via an XML file, which is not properly sanitized before being used in an eval statement.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:redhat

Assigner Org ID:53f830b8-0a3f-465b-8143-3b8a9948e749

Published At:01 Jul, 2005 | 04:00

Updated At:07 Aug, 2024 | 22:06

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350	vdb-entry signature x_refsource_OVAL
http://www.debian.org/security/2005/dsa-789	vendor-advisory x_refsource_DEBIAN
http://secunia.com/advisories/15947	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15852	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15944	third-party-advisory x_refsource_SECUNIA
http://www.novell.com/linux/security/advisories/2005_18_sr.html	vendor-advisory x_refsource_SUSE
http://secunia.com/advisories/15883	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15872	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15895	third-party-advisory x_refsource_SECUNIA
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294	vdb-entry signature x_refsource_OVAL
http://securitytracker.com/id?1015336	vdb-entry x_refsource_SECTRACK
http://www.debian.org/security/2005/dsa-746	vendor-advisory x_refsource_DEBIAN
http://secunia.com/advisories/17674	third-party-advisory x_refsource_SECUNIA
http://www.gulftech.org/?node=research&article_id=00087-07012005	x_refsource_MISC
http://www.vupen.com/english/advisories/2005/2827	vdb-entry x_refsource_VUPEN
http://secunia.com/advisories/15917	third-party-advisory x_refsource_SECUNIA
http://www.debian.org/security/2005/dsa-747	vendor-advisory x_refsource_DEBIAN
http://www.novell.com/linux/security/advisories/2005_41_php_pear.html	vendor-advisory x_refsource_SUSE
http://www.hardened-php.net/advisory-022005.php	x_refsource_MISC
http://www.securityfocus.com/archive/1/419064/100/0/threaded	vendor-advisory x_refsource_HP
http://marc.info/?l=bugtraq&m=112605112027335&w=2	vendor-advisory x_refsource_SUSE
http://secunia.com/advisories/15957	third-party-advisory x_refsource_SECUNIA
http://www.ampache.org/announce/3_3_1_2.php	x_refsource_CONFIRM
http://secunia.com/advisories/15810	third-party-advisory x_refsource_SECUNIA
http://security.gentoo.org/glsa/glsa-200507-01.xml	vendor-advisory x_refsource_GENTOO
http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt	x_refsource_CONFIRM
http://www.securityfocus.com/bid/14088	vdb-entry x_refsource_BID
http://secunia.com/advisories/16693	third-party-advisory x_refsource_SECUNIA
http://marc.info/?l=bugtraq&m=112008638320145&w=2	mailing-list x_refsource_BUGTRAQ
http://marc.info/?l=bugtraq&m=112015336720867&w=2	mailing-list x_refsource_BUGTRAQ
http://security.gentoo.org/glsa/glsa-200507-07.xml	vendor-advisory x_refsource_GENTOO
http://secunia.com/advisories/15904	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15903	third-party-advisory x_refsource_SECUNIA
http://www.novell.com/linux/security/advisories/2005_49_php.html	vendor-advisory x_refsource_SUSE
http://sourceforge.net/project/shownotes.php?release_id=338803	x_refsource_CONFIRM
http://secunia.com/advisories/17440	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15922	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15884	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15916	third-party-advisory x_refsource_SECUNIA
http://www.redhat.com/support/errata/RHSA-2005-564.html	vendor-advisory x_refsource_REDHAT
http://pear.php.net/package/XML_RPC/download/1.3.1	x_refsource_MISC
http://secunia.com/advisories/16001	third-party-advisory x_refsource_SECUNIA
http://sourceforge.net/project/showfiles.php?group_id=87163	x_refsource_CONFIRM
http://www.mandriva.com/security/advisories?name=MDKSA-2005:109	vendor-advisory x_refsource_MANDRAKE
http://security.gentoo.org/glsa/glsa-200507-06.xml	vendor-advisory x_refsource_GENTOO
http://www.debian.org/security/2005/dsa-745	vendor-advisory x_refsource_DEBIAN
http://www.securityfocus.com/archive/1/419064/100/0/threaded	vendor-advisory x_refsource_HP
http://secunia.com/advisories/15855	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/16339	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/18003	third-party-advisory x_refsource_SECUNIA
http://secunia.com/advisories/15861	third-party-advisory x_refsource_SECUNIA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://www.debian.org/security/2005/dsa-789

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/15947

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15852

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15944

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.novell.com/linux/security/advisories/2005_18_sr.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://secunia.com/advisories/15883

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15872

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15895

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294

Resource:

vdb-entry

signature

x_refsource_OVAL

Hyperlink: http://securitytracker.com/id?1015336

Resource:

vdb-entry

x_refsource_SECTRACK

Hyperlink: http://www.debian.org/security/2005/dsa-746

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://secunia.com/advisories/17674

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.gulftech.org/?node=research&article_id=00087-07012005

Resource:

x_refsource_MISC

Hyperlink: http://www.vupen.com/english/advisories/2005/2827

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: http://secunia.com/advisories/15917

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.debian.org/security/2005/dsa-747

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.novell.com/linux/security/advisories/2005_41_php_pear.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://www.hardened-php.net/advisory-022005.php

Resource:

x_refsource_MISC

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://marc.info/?l=bugtraq&m=112605112027335&w=2

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://secunia.com/advisories/15957

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.ampache.org/announce/3_3_1_2.php

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/15810

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-01.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.securityfocus.com/bid/14088

Resource:

vdb-entry

x_refsource_BID

Hyperlink: http://secunia.com/advisories/16693

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://marc.info/?l=bugtraq&m=112008638320145&w=2

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://marc.info/?l=bugtraq&m=112015336720867&w=2

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-07.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://secunia.com/advisories/15904

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15903

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.novell.com/linux/security/advisories/2005_49_php.html

Resource:

vendor-advisory

x_refsource_SUSE

Hyperlink: http://sourceforge.net/project/shownotes.php?release_id=338803

Resource:

x_refsource_CONFIRM

Hyperlink: http://secunia.com/advisories/17440

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15922

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15884

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15916

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://www.redhat.com/support/errata/RHSA-2005-564.html

Resource:

vendor-advisory

x_refsource_REDHAT

Hyperlink: http://pear.php.net/package/XML_RPC/download/1.3.1

Resource:

x_refsource_MISC

Hyperlink: http://secunia.com/advisories/16001

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://sourceforge.net/project/showfiles.php?group_id=87163

Resource:

x_refsource_CONFIRM

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2005:109

Resource:

vendor-advisory

x_refsource_MANDRAKE

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-06.xml

Resource:

vendor-advisory

x_refsource_GENTOO

Hyperlink: http://www.debian.org/security/2005/dsa-745

Resource:

vendor-advisory

x_refsource_DEBIAN

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://secunia.com/advisories/15855

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/16339

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/18003

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://secunia.com/advisories/15861

Resource:

third-party-advisory

x_refsource_SECUNIA

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350	vdb-entry signature x_refsource_OVAL x_transferred
http://www.debian.org/security/2005/dsa-789	vendor-advisory x_refsource_DEBIAN x_transferred
http://secunia.com/advisories/15947	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15852	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15944	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.novell.com/linux/security/advisories/2005_18_sr.html	vendor-advisory x_refsource_SUSE x_transferred
http://secunia.com/advisories/15883	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15872	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15895	third-party-advisory x_refsource_SECUNIA x_transferred
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294	vdb-entry signature x_refsource_OVAL x_transferred
http://securitytracker.com/id?1015336	vdb-entry x_refsource_SECTRACK x_transferred
http://www.debian.org/security/2005/dsa-746	vendor-advisory x_refsource_DEBIAN x_transferred
http://secunia.com/advisories/17674	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.gulftech.org/?node=research&article_id=00087-07012005	x_refsource_MISC x_transferred
http://www.vupen.com/english/advisories/2005/2827	vdb-entry x_refsource_VUPEN x_transferred
http://secunia.com/advisories/15917	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.debian.org/security/2005/dsa-747	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.novell.com/linux/security/advisories/2005_41_php_pear.html	vendor-advisory x_refsource_SUSE x_transferred
http://www.hardened-php.net/advisory-022005.php	x_refsource_MISC x_transferred
http://www.securityfocus.com/archive/1/419064/100/0/threaded	vendor-advisory x_refsource_HP x_transferred
http://marc.info/?l=bugtraq&m=112605112027335&w=2	vendor-advisory x_refsource_SUSE x_transferred
http://secunia.com/advisories/15957	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.ampache.org/announce/3_3_1_2.php	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/15810	third-party-advisory x_refsource_SECUNIA x_transferred
http://security.gentoo.org/glsa/glsa-200507-01.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt	x_refsource_CONFIRM x_transferred
http://www.securityfocus.com/bid/14088	vdb-entry x_refsource_BID x_transferred
http://secunia.com/advisories/16693	third-party-advisory x_refsource_SECUNIA x_transferred
http://marc.info/?l=bugtraq&m=112008638320145&w=2	mailing-list x_refsource_BUGTRAQ x_transferred
http://marc.info/?l=bugtraq&m=112015336720867&w=2	mailing-list x_refsource_BUGTRAQ x_transferred
http://security.gentoo.org/glsa/glsa-200507-07.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://secunia.com/advisories/15904	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15903	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.novell.com/linux/security/advisories/2005_49_php.html	vendor-advisory x_refsource_SUSE x_transferred
http://sourceforge.net/project/shownotes.php?release_id=338803	x_refsource_CONFIRM x_transferred
http://secunia.com/advisories/17440	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15922	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15884	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15916	third-party-advisory x_refsource_SECUNIA x_transferred
http://www.redhat.com/support/errata/RHSA-2005-564.html	vendor-advisory x_refsource_REDHAT x_transferred
http://pear.php.net/package/XML_RPC/download/1.3.1	x_refsource_MISC x_transferred
http://secunia.com/advisories/16001	third-party-advisory x_refsource_SECUNIA x_transferred
http://sourceforge.net/project/showfiles.php?group_id=87163	x_refsource_CONFIRM x_transferred
http://www.mandriva.com/security/advisories?name=MDKSA-2005:109	vendor-advisory x_refsource_MANDRAKE x_transferred
http://security.gentoo.org/glsa/glsa-200507-06.xml	vendor-advisory x_refsource_GENTOO x_transferred
http://www.debian.org/security/2005/dsa-745	vendor-advisory x_refsource_DEBIAN x_transferred
http://www.securityfocus.com/archive/1/419064/100/0/threaded	vendor-advisory x_refsource_HP x_transferred
http://secunia.com/advisories/15855	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/16339	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/18003	third-party-advisory x_refsource_SECUNIA x_transferred
http://secunia.com/advisories/15861	third-party-advisory x_refsource_SECUNIA x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://www.debian.org/security/2005/dsa-789

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://secunia.com/advisories/15947

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15852

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15944

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.novell.com/linux/security/advisories/2005_18_sr.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://secunia.com/advisories/15883

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15872

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15895

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294

Resource:

vdb-entry

signature

x_refsource_OVAL

x_transferred

Hyperlink: http://securitytracker.com/id?1015336

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: http://www.debian.org/security/2005/dsa-746

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://secunia.com/advisories/17674

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.gulftech.org/?node=research&article_id=00087-07012005

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2005/2827

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: http://secunia.com/advisories/15917

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.debian.org/security/2005/dsa-747

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://www.novell.com/linux/security/advisories/2005_41_php_pear.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://www.hardened-php.net/advisory-022005.php

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=112605112027335&w=2

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://secunia.com/advisories/15957

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.ampache.org/announce/3_3_1_2.php

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://secunia.com/advisories/15810

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-01.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.securityfocus.com/bid/14088

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://secunia.com/advisories/16693

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=112008638320145&w=2

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://marc.info/?l=bugtraq&m=112015336720867&w=2

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-07.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://secunia.com/advisories/15904

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15903

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.novell.com/linux/security/advisories/2005_49_php.html

Resource:

vendor-advisory

x_refsource_SUSE

x_transferred

Hyperlink: http://sourceforge.net/project/shownotes.php?release_id=338803

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://secunia.com/advisories/17440

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15922

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15884

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15916

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://www.redhat.com/support/errata/RHSA-2005-564.html

Resource:

vendor-advisory

x_refsource_REDHAT

x_transferred

Hyperlink: http://pear.php.net/package/XML_RPC/download/1.3.1

Resource:

x_refsource_MISC

x_transferred

Hyperlink: http://secunia.com/advisories/16001

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://sourceforge.net/project/showfiles.php?group_id=87163

Resource:

x_refsource_CONFIRM

x_transferred

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2005:109

Resource:

vendor-advisory

x_refsource_MANDRAKE

x_transferred

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-06.xml

Resource:

vendor-advisory

x_refsource_GENTOO

x_transferred

Hyperlink: http://www.debian.org/security/2005/dsa-745

Resource:

vendor-advisory

x_refsource_DEBIAN

x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://secunia.com/advisories/15855

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/16339

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/18003

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://secunia.com/advisories/15861

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:secalert@redhat.com

Published At:05 Jul, 2005 | 04:00

Updated At:03 Apr, 2025 | 01:03

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P

Type: Primary

Version: 2.0

Base score: 7.5

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:P/I:P/A:P

CPE Matches

The PHP Group

>>xml_rpc>>Versions up to 1.3.0(inclusive)

cpe:2.3:a:php:xml_rpc:*:*:*:*:*:pear:*:*

gggeek>>phpxmlrpc>>Versions up to 1.1(inclusive)

cpe:2.3:a:gggeek:phpxmlrpc:*:*:*:*:*:*:*:*

The Drupal Association

>>drupal>>Versions before 4.5.4(exclusive)

cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

The Drupal Association

>>drupal>>Versions from 4.6.0(inclusive) to 4.6.2(exclusive)

cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*

tiki>>tikiwiki_cms\/groupware>>Versions before 1.8.5(exclusive)

cpe:2.3:a:tiki:tikiwiki_cms\/groupware:*:*:*:*:*:*:*:*

Debian GNU/Linux

>>debian_linux>>3.1

cpe:2.3:o:debian:debian_linux:3.1:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-94	Primary	nvd@nist.gov

CWE ID: CWE-94

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://marc.info/?l=bugtraq&m=112008638320145&w=2	secalert@redhat.com	Third Party Advisory
http://marc.info/?l=bugtraq&m=112015336720867&w=2	secalert@redhat.com	Third Party Advisory
http://marc.info/?l=bugtraq&m=112605112027335&w=2	secalert@redhat.com	Third Party Advisory
http://pear.php.net/package/XML_RPC/download/1.3.1	secalert@redhat.com	Patch Product
http://secunia.com/advisories/15810	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15852	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15855	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15861	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15872	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15883	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15884	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15895	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15903	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15904	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15916	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15917	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15922	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15944	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15947	secalert@redhat.com	Broken Link
http://secunia.com/advisories/15957	secalert@redhat.com	Broken Link
http://secunia.com/advisories/16001	secalert@redhat.com	Broken Link
http://secunia.com/advisories/16339	secalert@redhat.com	Broken Link
http://secunia.com/advisories/16693	secalert@redhat.com	Broken Link
http://secunia.com/advisories/17440	secalert@redhat.com	Broken Link
http://secunia.com/advisories/17674	secalert@redhat.com	Broken Link
http://secunia.com/advisories/18003	secalert@redhat.com	Broken Link
http://security.gentoo.org/glsa/glsa-200507-01.xml	secalert@redhat.com	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200507-06.xml	secalert@redhat.com	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200507-07.xml	secalert@redhat.com	Third Party Advisory
http://securitytracker.com/id?1015336	secalert@redhat.com	Broken Link Third Party Advisory VDB Entry
http://sourceforge.net/project/showfiles.php?group_id=87163	secalert@redhat.com	Product
http://sourceforge.net/project/shownotes.php?release_id=338803	secalert@redhat.com	Broken Link
http://www.ampache.org/announce/3_3_1_2.php	secalert@redhat.com	Broken Link
http://www.debian.org/security/2005/dsa-745	secalert@redhat.com	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-746	secalert@redhat.com	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-747	secalert@redhat.com	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-789	secalert@redhat.com	Mailing List Third Party Advisory
http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt	secalert@redhat.com	Third Party Advisory
http://www.gulftech.org/?node=research&article_id=00087-07012005	secalert@redhat.com	Not Applicable Vendor Advisory
http://www.hardened-php.net/advisory-022005.php	secalert@redhat.com	Not Applicable
http://www.mandriva.com/security/advisories?name=MDKSA-2005:109	secalert@redhat.com	Patch Third Party Advisory Vendor Advisory
http://www.novell.com/linux/security/advisories/2005_18_sr.html	secalert@redhat.com	Broken Link
http://www.novell.com/linux/security/advisories/2005_41_php_pear.html	secalert@redhat.com	Broken Link
http://www.novell.com/linux/security/advisories/2005_49_php.html	secalert@redhat.com	Broken Link
http://www.redhat.com/support/errata/RHSA-2005-564.html	secalert@redhat.com	Broken Link
http://www.securityfocus.com/archive/1/419064/100/0/threaded	secalert@redhat.com	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/419064/100/0/threaded	secalert@redhat.com	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/14088	secalert@redhat.com	Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/2827	secalert@redhat.com	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294	secalert@redhat.com	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350	secalert@redhat.com	Broken Link
http://marc.info/?l=bugtraq&m=112008638320145&w=2	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://marc.info/?l=bugtraq&m=112015336720867&w=2	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://marc.info/?l=bugtraq&m=112605112027335&w=2	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://pear.php.net/package/XML_RPC/download/1.3.1	af854a3a-2127-422b-91ae-364da2661108	Patch Product
http://secunia.com/advisories/15810	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15852	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15855	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15861	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15872	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15883	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15884	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15895	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15903	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15904	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15916	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15917	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15922	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15944	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15947	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/15957	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/16001	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/16339	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/16693	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/17440	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/17674	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://secunia.com/advisories/18003	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://security.gentoo.org/glsa/glsa-200507-01.xml	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200507-06.xml	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200507-07.xml	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://securitytracker.com/id?1015336	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://sourceforge.net/project/showfiles.php?group_id=87163	af854a3a-2127-422b-91ae-364da2661108	Product
http://sourceforge.net/project/shownotes.php?release_id=338803	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.ampache.org/announce/3_3_1_2.php	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.debian.org/security/2005/dsa-745	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-746	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-747	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://www.debian.org/security/2005/dsa-789	af854a3a-2127-422b-91ae-364da2661108	Mailing List Third Party Advisory
http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory
http://www.gulftech.org/?node=research&article_id=00087-07012005	af854a3a-2127-422b-91ae-364da2661108	Not Applicable Vendor Advisory
http://www.hardened-php.net/advisory-022005.php	af854a3a-2127-422b-91ae-364da2661108	Not Applicable
http://www.mandriva.com/security/advisories?name=MDKSA-2005:109	af854a3a-2127-422b-91ae-364da2661108	Patch Third Party Advisory Vendor Advisory
http://www.novell.com/linux/security/advisories/2005_18_sr.html	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.novell.com/linux/security/advisories/2005_41_php_pear.html	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.novell.com/linux/security/advisories/2005_49_php.html	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.redhat.com/support/errata/RHSA-2005-564.html	af854a3a-2127-422b-91ae-364da2661108	Broken Link
http://www.securityfocus.com/archive/1/419064/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/archive/1/419064/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/14088	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://www.vupen.com/english/advisories/2005/2827	af854a3a-2127-422b-91ae-364da2661108	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294	af854a3a-2127-422b-91ae-364da2661108	Broken Link
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350	af854a3a-2127-422b-91ae-364da2661108	Broken Link

Hyperlink: http://marc.info/?l=bugtraq&m=112008638320145&w=2

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://marc.info/?l=bugtraq&m=112015336720867&w=2

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://marc.info/?l=bugtraq&m=112605112027335&w=2

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://pear.php.net/package/XML_RPC/download/1.3.1

Source: secalert@redhat.com

Resource:

Patch

Product

Hyperlink: http://secunia.com/advisories/15810

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15852

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15855

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15861

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15872

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15883

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15884

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15895

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15903

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15904

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15916

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15917

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15922

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15944

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15947

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/15957

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/16001

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/16339

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/16693

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/17440

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/17674

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://secunia.com/advisories/18003

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-01.xml

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-06.xml

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://security.gentoo.org/glsa/glsa-200507-07.xml

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://securitytracker.com/id?1015336

Source: secalert@redhat.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://sourceforge.net/project/showfiles.php?group_id=87163

Source: secalert@redhat.com

Resource:

Product

Hyperlink: http://sourceforge.net/project/shownotes.php?release_id=338803

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.ampache.org/announce/3_3_1_2.php

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.debian.org/security/2005/dsa-745

Source: secalert@redhat.com

Resource:

Mailing List

Third Party Advisory

Hyperlink: http://www.debian.org/security/2005/dsa-746

Source: secalert@redhat.com

Resource:

Mailing List

Third Party Advisory

Hyperlink: http://www.debian.org/security/2005/dsa-747

Source: secalert@redhat.com

Resource:

Mailing List

Third Party Advisory

Hyperlink: http://www.debian.org/security/2005/dsa-789

Source: secalert@redhat.com

Resource:

Mailing List

Third Party Advisory

Hyperlink: http://www.drupal.org/security/drupal-sa-2005-003/advisory.txt

Source: secalert@redhat.com

Resource:

Third Party Advisory

Hyperlink: http://www.gulftech.org/?node=research&article_id=00087-07012005

Source: secalert@redhat.com

Resource:

Not Applicable

Vendor Advisory

Hyperlink: http://www.hardened-php.net/advisory-022005.php

Source: secalert@redhat.com

Resource:

Not Applicable

Hyperlink: http://www.mandriva.com/security/advisories?name=MDKSA-2005:109

Source: secalert@redhat.com

Resource:

Patch

Third Party Advisory

Vendor Advisory

Hyperlink: http://www.novell.com/linux/security/advisories/2005_18_sr.html

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.novell.com/linux/security/advisories/2005_41_php_pear.html

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.novell.com/linux/security/advisories/2005_49_php.html

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.redhat.com/support/errata/RHSA-2005-564.html

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Source: secalert@redhat.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.securityfocus.com/archive/1/419064/100/0/threaded

Source: secalert@redhat.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.securityfocus.com/bid/14088

Source: secalert@redhat.com

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.vupen.com/english/advisories/2005/2827

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11294

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A350

Source: secalert@redhat.com

Resource:

Broken Link

Hyperlink: http://marc.info/?l=bugtraq&m=112008638320145&w=2