Hillstone Networks

RULE（RULE ID：323869）

Rule General Information


Release Date:		2019-11-29

Rule Name:		php imap_open Remote Code Execution Vulnerability (CVE-2018-1000859)

Severity:

CVE ID:

Rule Protection Details


Description:		University of Washington IMAP Toolkit 2007f on UNIX, as used in imap_open() in PHP and other products, launches an rsh command (by means of the imap_rimap function in c-client/imap4r1.c and the tcp_aopen function in osdep/unix/tcp_unix.c) without preventing argument injection, which might allow remote attackers to execute arbitrary OS commands if the IMAP server name is untrusted input (e.g., entered by a user of a web application) and if rsh has been replaced by a program with different argument semantics.

Impact:		An attacker can execute arbitrary code via a successful exploit in the context of the vulnerable software.

Affected OS:		Windows, Linux, Others

Reference:

Solutions

There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.