CVE-2005-4154
published 2005-12-11CVE-2005-4154: Unspecified vulnerability in PEAR installer 1.4.2 and earlier allows user-assisted attackers to execute arbitrary code via a crafted package that can execute…
PriorityP426medium5.1CVSS 2.0
AVNACHAuNCPIPAP
EPSS
7.38%
93.6th percentile
Unspecified vulnerability in PEAR installer 1.4.2 and earlier allows user-assisted attackers to execute arbitrary code via a crafted package that can execute code when the pear command is executed or when the Web/Gtk frontend is loaded.
Affected
19 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php | pear | <= 1.4.2 | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
| php | pear | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://pear.php.net/advisory-20051104.txthttp://secunia.com/advisories/17563/http://securitytracker.com/alerts/2005/Nov/1015161.htmlhttp://www.vupen.com/english/advisories/2005/2444https://exchange.xforce.ibmcloud.com/vulnerabilities/23021http://pear.php.net/advisory-20051104.txthttp://secunia.com/advisories/17563/http://securitytracker.com/alerts/2005/Nov/1015161.htmlhttp://www.vupen.com/english/advisories/2005/2444https://exchange.xforce.ibmcloud.com/vulnerabilities/23021
2005-12-11
Published