CVE-2007-5934 - OpenCVE

The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2 application, as demonstrated by a file:// URL or a URL for an intranet web site.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

AV:N/AC:M/Au:N/C:P/I:N/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Pear	Structures Datagrid Datasource Mdb2

Configuration 1 [-]

cpe:2.3:a:pear:structures_datagrid_datasource_mdb2:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://bugs.gentoo.org/show_bug.cgi?id=198446
http://marc.info/?l=pear-cvs&m=117823082829114&w=2
http://osvdb.org/42107
http://pear.php.net/bugs/bug.php?id=10024
http://pear.php.net/package/MDB2/download/2.5.0a1
http://secunia.com/advisories/27572
http://secunia.com/advisories/27626
http://secunia.com/advisories/27983
http://security.gentoo.org/glsa/glsa-200712-05.xml
http://www.securityfocus.com/bid/26382
http://www.vupen.com/english/advisories/2007/3806
https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00434.html

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-11-13T22:00:00

Updated: 2024-08-07T15:47:00.567Z

Reserved: 2007-11-13T00:00:00

Link: CVE-2007-5934

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-11-13T22:46:00.000

Modified: 2011-03-08T03:01:31.687

Link: CVE-2007-5934

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-02-04T00:00:00", "descriptions": [{"lang": "en", "value": "The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2 application, as demonstrated by a file:// URL or a URL for an intranet web site."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-11-17T10:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "26382", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/26382"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=198446"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://pear.php.net/package/MDB2/download/2.5.0a1"}, {"name": "42107", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/42107"}, {"name": "GLSA-200712-05", "tags": ["vendor-advisory", "x_refsource_GENTOO"], "url": "http://security.gentoo.org/glsa/glsa-200712-05.xml"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://pear.php.net/bugs/bug.php?id=10024"}, {"name": "27983", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27983"}, {"name": "27626", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27626"}, {"name": "[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs", "tags": ["mailing-list", "x_refsource_MLIST"], "url": "http://marc.info/?l=pear-cvs&m=117823082829114&w=2"}, {"name": "27572", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/27572"}, {"name": "FEDORA-2007-3369", "tags": ["vendor-advisory", "x_refsource_FEDORA"], "url": "https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00434.html"}, {"name": "ADV-2007-3806", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/3806"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-5934", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2 application, as demonstrated by a file:// URL or a URL for an intranet web site."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "26382", "refsource": "BID", "url": "http://www.securityfocus.com/bid/26382"}, {"name": "http://bugs.gentoo.org/show_bug.cgi?id=198446", "refsource": "CONFIRM", "url": "http://bugs.gentoo.org/show_bug.cgi?id=198446"}, {"name": "http://pear.php.net/package/MDB2/download/2.5.0a1", "refsource": "CONFIRM", "url": "http://pear.php.net/package/MDB2/download/2.5.0a1"}, {"name": "42107", "refsource": "OSVDB", "url": "http://osvdb.org/42107"}, {"name": "GLSA-200712-05", "refsource": "GENTOO", "url": "http://security.gentoo.org/glsa/glsa-200712-05.xml"}, {"name": "http://pear.php.net/bugs/bug.php?id=10024", "refsource": "CONFIRM", "url": "http://pear.php.net/bugs/bug.php?id=10024"}, {"name": "27983", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27983"}, {"name": "27626", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27626"}, {"name": "[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs", "refsource": "MLIST", "url": "http://marc.info/?l=pear-cvs&m=117823082829114&w=2"}, {"name": "27572", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/27572"}, {"name": "FEDORA-2007-3369", "refsource": "FEDORA", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00434.html"}, {"name": "ADV-2007-3806", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/3806"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T15:47:00.567Z"}, "title": "CVE Program Container", "references": [{"name": "26382", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/26382"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://bugs.gentoo.org/show_bug.cgi?id=198446"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://pear.php.net/package/MDB2/download/2.5.0a1"}, {"name": "42107", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/42107"}, {"name": "GLSA-200712-05", "tags": ["vendor-advisory", "x_refsource_GENTOO", "x_transferred"], "url": "http://security.gentoo.org/glsa/glsa-200712-05.xml"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://pear.php.net/bugs/bug.php?id=10024"}, {"name": "27983", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27983"}, {"name": "27626", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27626"}, {"name": "[PEAR-CVS] 20070503 cvs: pear /MDB2 MDB2.php package.php /MDB2/MDB2/Driver mysql.php mysqli.php oci8.php pgs", "tags": ["mailing-list", "x_refsource_MLIST", "x_transferred"], "url": "http://marc.info/?l=pear-cvs&m=117823082829114&w=2"}, {"name": "27572", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/27572"}, {"name": "FEDORA-2007-3369", "tags": ["vendor-advisory", "x_refsource_FEDORA", "x_transferred"], "url": "https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00434.html"}, {"name": "ADV-2007-3806", "tags": ["vdb-entry", "x_refsource_VUPEN", "x_transferred"], "url": "http://www.vupen.com/english/advisories/2007/3806"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-5934", "datePublished": "2007-11-13T22:00:00", "dateReserved": "2007-11-13T00:00:00", "dateUpdated": "2024-08-07T15:47:00.567Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:pear:structures_datagrid_datasource_mdb2:*:*:*:*:*:*:*:*", "matchCriteriaId": "113B9DCD-5DE4-4FB2-AB87-BB6A87B1CD31", "versionEndIncluding": "2.5.0", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The LOB functionality in PEAR MDB2 before 2.5.0a1 interprets a request to store a URL string as a request to retrieve and store the contents of the URL, which might allow remote attackers to use MDB2 as an indirect proxy or obtain sensitive information via a URL into a form field in an MDB2 application, as demonstrated by a file:// URL or a URL for an intranet web site."}, {"lang": "es", "value": "La funcionalidad LOB en PEAR MDB2 anterior a 2.5.0a1 interpreta una respuesta para almacenar una cadena que contiene una URL, lo cual podr\u00eda permitir a atacantes remotos utilziar MDB2 como un proxy indirecto o obtener informaci\u00f3n sensible a trav\u00e9s de una URL dentro del campo form en una aplicaic\u00f3n MDB2, como se demostr\u00f3 por file:// URL o una URL para un sitio web intranet."}], "id": "CVE-2007-5934", "lastModified": "2011-03-08T03:01:31.687", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-11-13T22:46:00.000", "references": [{"source": "cve@mitre.org", "url": "http://bugs.gentoo.org/show_bug.cgi?id=198446"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=pear-cvs&m=117823082829114&w=2"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/42107"}, {"source": "cve@mitre.org", "url": "http://pear.php.net/bugs/bug.php?id=10024"}, {"source": "cve@mitre.org", "url": "http://pear.php.net/package/MDB2/download/2.5.0a1"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/27572"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/27626"}, {"source": "cve@mitre.org", "url": "http://secunia.com/advisories/27983"}, {"source": "cve@mitre.org", "url": "http://security.gentoo.org/glsa/glsa-200712-05.xml"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/26382"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/3806"}, {"source": "cve@mitre.org", "url": "https://www.redhat.com/archives/fedora-package-announce/2007-November/msg00434.html"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}