CVE-2017-5677

EUVD-2017-14754
PEAR HTML_AJAX 0.3.0 through 0.5.7 has a PHP Object Injection Vulnerability in the PHP Serializer. It allows remote code execution. In one viewpoint, the root cause is an incorrect regular expression.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
9.8 CRITICAL
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 88%
Affected Products (NVD)
VendorProductVersion
pearhtml_ajax
0.3.0
pearhtml_ajax
0.3.1
pearhtml_ajax
0.3.2
pearhtml_ajax
0.3.3
pearhtml_ajax
0.3.4
pearhtml_ajax
0.4.0
pearhtml_ajax
0.4.1
pearhtml_ajax
0.5.0
pearhtml_ajax
0.5.1
pearhtml_ajax
0.5.2
pearhtml_ajax
0.5.3
pearhtml_ajax
0.5.4
pearhtml_ajax
0.5.5
pearhtml_ajax
0.5.6
pearhtml_ajax
0.5.7
𝑥
= Vulnerable software versions
References
http://blog.pear.php.net/2017/02/02/security-html_ajax-058/
http://karmainsecurity.com/KIS-2017-01
http://seclists.org/fulldisclosure/2017/Feb/12
http://www.securityfocus.com/bid/96044
https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f5acb5adcd195f9a06b732794cb0de7620def646
https://pear.php.net/bugs/bug.php?id=21165
http://blog.pear.php.net/2017/02/02/security-html_ajax-058/
http://karmainsecurity.com/KIS-2017-01
http://seclists.org/fulldisclosure/2017/Feb/12
http://www.securityfocus.com/bid/96044
https://gitweb.gentoo.org/repo/gentoo.git/commit/?id=f5acb5adcd195f9a06b732794cb0de7620def646
https://pear.php.net/bugs/bug.php?id=21165