CVE-2004-0529 in cPanelinfo

Summary

The modified suexec program in cPanel, when configured for mod_php and compiled for Apache 1.3.31 and earlier without mod_phpsuexec, allows local users to execute untrusted shared scripts and gain privileges, as demonstrated using untainted scripts such as (1) proftpdvhosts or (2) addalink.cgi, a different vulnerability than CVE-2004-0490.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Reservation

06/03/2004

Disclosure

08/06/2004

Moderation

VulDB entry created

Entries

VDB-22030 (1)

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

8.4

EPSS

0.00553

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0529
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0529
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0529/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!