Published: 27/09/2006 Updated: 05/09/2008

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 905

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Unspecified vulnerability in cPanel prior to 10.9.0 12 Tree allows remote authenticated users to gain privileges via unspecified vectors in (1) mysqladmin and (2) hooksadmin.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cpanel cpanel 9.9.1 r3
cpanel cpanel 9.0
cpanel cpanel 6.4
cpanel cpanel 10.2.0 r82
cpanel cpanel 10.8.2 118
cpanel cpanel 5.3
cpanel cpanel 9.1.0 r85
cpanel cpanel 5.0
cpanel cpanel 6.0
cpanel cpanel 6.4.1
cpanel cpanel 6.4.2 stable 48
cpanel cpanel 10.8.1 113
cpanel cpanel 6.4.2
cpanel cpanel 8.0
cpanel cpanel 9.1
cpanel cpanel 9.4.1 r64
cpanel cpanel 6.2
cpanel cpanel 7.0
cpanel cpanel 10.6.0 r137

#!/usr/bin/perl -w # 10/01/06 - cPanel <= 108x cpwrap root exploit via mysqladmin # use strict; # haha oh wait my $cpwrap = "/usr/local/cpanel/bin/cpwrap"; my $mysqlwrap = "/usr/local/cpanel/bin/mysqlwrap"; my $pwd = `pwd`; chomp $pwd; $ENV{'PERL5LIB'} = "$pwd"; if ( ! -x "/usr/bin/gcc" ) { die "gcc: $!\n"; } if ( ! -x ...

NVD-CWE-Other http://changelog.cpanel.net/?build=&showall=1 http://forums.cpanel.net/showthread.php?t=58134 http://www.securityfocus.com/bid/20163 http://securitytracker.com/id?1016913 http://secunia.com/advisories/22072 https://nvd.nist.gov https://www.exploit-db.com/exploits/2466/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Product List Vendor List Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-5014

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect