Main Vulnerability Database Vulnerabilities #VU17096

Backdoor in PEAR - #VU17096

Published: January 21, 2019

Vulnerability identifier: #VU17096

CSH Severity: Critical

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Red

CVE-ID: N/A

CWE-ID: CWE-912

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: PHP Group

Affected software:
PEAR

Detailed vulnerability description

The vulnerability allows a remote attacker to compromise the affected system.

The issue exists within the PHP PEAR software, downloaded from the official repository within the last 6 month. Unknown attackers compromised the official repository and implanted malicious code into it.

If you have updated your PEAR installation within the last 6 month, most likely your server is compromised.

Remediation

Update to version 1.10.9.

Sources

http://blog.pear.php.net/2018/12/20/security-vulnerability-announcement-archive_tar/

Backdoor in PEAR - #VU17096

Detailed vulnerability description

Remediation

Sources

Please verify you're human