CVE-2015-8476

Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an (1) email address to the validateAddress function in class.phpmailer.php or (2) SMTP command to the sendCommand function in class.smtp.php, a different vulnerability than CVE-2012-0796.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177130.html
http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177139.html
http://www.debian.org/security/2015/dsa-3416
http://www.openwall.com/lists/oss-security/2015/12/04/5
http://www.openwall.com/lists/oss-security/2015/12/05/1
http://www.securityfocus.com/bid/78619
https://github.com/PHPMailer/PHPMailer/commit/6687a96a18b8f12148881e4ddde795ae477284b0
https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.14	Vendor Advisory

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:debian:debian_linux:6.0:::::::*
	cpe:2.3:o:debian:debian_linux:7.0:::::::*
	cpe:2.3:o:debian:debian_linux:8.0:::::::*

Configuration 2 (hide)

cpe:2.3:a:phpmailer_project:phpmailer:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-12-16 21:59

Updated : 2016-12-06 03:03

NVD link : CVE-2015-8476

Mitre link : CVE-2015-8476

CVE.ORG link : CVE-2015-8476

JSON object : View

Products Affected

debian

debian_linux

phpmailer_project

phpmailer

CWE

CWE-20

Improper Input Validation

{"id": "CVE-2015-8476", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-12-16T21:59:05.313", "references": [{"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177130.html", "source": "cve@mitre.org"}, {"url": "http://lists.fedoraproject.org/pipermail/package-announce/2016-February/177139.html", "source": "cve@mitre.org"}, {"url": "http://www.debian.org/security/2015/dsa-3416", "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2015/12/04/5", "source": "cve@mitre.org"}, {"url": "http://www.openwall.com/lists/oss-security/2015/12/05/1", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/78619", "source": "cve@mitre.org"}, {"url": "https://github.com/PHPMailer/PHPMailer/commit/6687a96a18b8f12148881e4ddde795ae477284b0", "source": "cve@mitre.org"}, {"url": "https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.14", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "Multiple CRLF injection vulnerabilities in PHPMailer before 5.2.14 allow attackers to inject arbitrary SMTP commands via CRLF sequences in an (1) email address to the validateAddress function in class.phpmailer.php or (2) SMTP command to the sendCommand function in class.smtp.php, a different vulnerability than CVE-2012-0796."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n CRLF en PHPMailer en versiones anteriores a 5.2.14 permite a atacantes inyectar comandos SMTP arbitrarios a trav\u00e9s de secuencias CRLF en (1) una direcci\u00f3n de correo electr\u00f3nico de la funci\u00f3n validateAddress en class.phpmailer.php o (2) un comando SMTP de la funci\u00f3n sendCommand en class.smtp.php, una vulnerabilidad diferente a CVE-2012-0796."}], "lastModified": "2016-12-06T03:03:57.703", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:debian:debian_linux:6.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "036E8A89-7A16-411F-9D31-676313BB7244"}, {"criteria": "cpe:2.3:o:debian:debian_linux:7.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "16F59A04-14CF-49E2-9973-645477EA09DA"}, {"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:phpmailer_project:phpmailer:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B541AF92-B6BD-4D45-AE93-F5DA2E3B3490", "versionEndIncluding": "5.2.13"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}