Signature Detail

Short Name	HTTP:PHP:FORMMAIL-SCRIPTROOT
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	formmail
Release Date	2005/11/09
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: Formmail Variable Tampering

This signature detects attempts to exploit a known vulnerability against the Formmail variable. Formmail version 2.3 and earlier might be vulnerable. By tampering with the Formmail variable, malicious users can set the script_root variable to a remote source to include arbitrary files into a Formmail system. Successful attacks can result in arbitrary code execution.

Extended Description

None

References

URL: http://www.packetstormsecurity.org/0503-exploits/formmail23.txt

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: Formmail Variable Tampering

Extended Description

References