Published: 27/09/2006 Updated: 05/09/2008

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Unspecified vulnerability in cPanel prior to 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in (1) mysqladmin and (2) hooksadmin.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cpanel cpanel 10.8.2_118
cpanel cpanel 5.0
cpanel cpanel 5.3
cpanel cpanel 6.0
cpanel cpanel 10.2.0_r82
cpanel cpanel 10.8.1_113
cpanel cpanel 6.2
cpanel cpanel 6.4.1
cpanel cpanel 9.1.0_r85
cpanel cpanel 9.9.1_r3
cpanel cpanel 6.4.2_stable_48
cpanel cpanel 7.0
cpanel cpanel 8.0
cpanel cpanel 9.0
cpanel cpanel 9.1
cpanel cpanel 10.6.0_r137
cpanel cpanel 6.4
cpanel cpanel 6.4.2
cpanel cpanel 9.4.1_r64

#!/usr/bin/perl -w # 10/01/06 - cPanel <= 108x cpwrap root exploit via mysqladmin # use strict; # haha oh wait my $cpwrap = "/usr/local/cpanel/bin/cpwrap"; my $mysqlwrap = "/usr/local/cpanel/bin/mysqlwrap"; my $pwd = `pwd`; chomp $pwd; $ENV{'PERL5LIB'} = "$pwd"; if ( ! -x "/usr/bin/gcc" ) { die "gcc: $!\n"; } if ( ! -x ...

NVD-CWE-Other http://changelog.cpanel.net/?build=&showall=1 http://forums.cpanel.net/showthread.php?t=58134 http://www.securityfocus.com/bid/20163 http://securitytracker.com/id?1016913 http://secunia.com/advisories/22072 https://nvd.nist.gov https://www.exploit-db.com/exploits/2466/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-5014

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect