Main Vulnerability Database Vulnerabilities #VU17096

#VU17096 Backdoor in PEAR

Published: January 21, 2019

Vulnerability identifier: #VU17096

Vulnerability risk: Critical

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Red

CVE-ID: N/A

CWE-ID: CWE-912

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
PEAR

Software vendor:
PHP Group

Description

The vulnerability allows a remote attacker to compromise the affected system.

The issue exists within the PHP PEAR software, downloaded from the official repository within the last 6 month. Unknown attackers compromised the official repository and implanted malicious code into it.

If you have updated your PEAR installation within the last 6 month, most likely your server is compromised.

Remediation

Update to version 1.10.9.

External links

http://blog.pear.php.net/2018/12/20/security-vulnerability-announcement-archive_tar/

#VU17096 Backdoor in PEAR

Description

Remediation

External links

Please verify you're human