Strix
26.1K

CVE-2004-0490

UnknownEPSS 4.47%

Last modified

CVE-2004-0490 is a vulnerability of currently unknown severity. cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a script instead of the PATH_TRANSLATED variable, which allows local users to execute arbitrary PHP code as other users via a URL that references the attacker's script after the user's script, which executes the attacker's script with the user's privileges, a different vulnerability than CVE-2004-0529.. EPSS estimates a 4.47% chance of exploitation in the next 30 days.

Description

cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a script instead of the PATH_TRANSLATED variable, which allows local users to execute arbitrary PHP code as other users via a URL that references the attacker's script after the user's script, which executes the attacker's script with the user's privileges, a different vulnerability than CVE-2004-0529.

Metrics

EPSS Probability
4.47%

90.2th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersions
CpanelCpanel5.0
CpanelCpanel5.3
CpanelCpanel6.0
CpanelCpanel6.2
CpanelCpanel6.4
CpanelCpanel6.4.1
CpanelCpanel6.4.2
CpanelCpanel6.4.2_stable_48
CpanelCpanel7.0
CpanelCpanel8.0
CpanelCpanel9.0
CpanelCpanel9.1
CpanelCpanel9.1.0_r85

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2004-0490?
cPanel, when compiling Apache 1.3.29 and PHP with the mod_phpsuexec option, does not set the --enable-discard-path option, which causes php to use the SCRIPT_FILENAME variable to find and execute a script instead of the PATH_TRANSLATED variable, which allows local users to execute arbitrary PHP code as other users via a URL that references the attacker's script after the user's script, which executes the attacker's script with the user's privileges, a different vulnerability than CVE-2004-0529.
How severe is CVE-2004-0490?
Severity scoring for CVE-2004-0490 is pending analysis. The EPSS model estimates a 4.47% probability of exploitation in the next 30 days.
How do I fix CVE-2004-0490?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2004-0490?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST