What is CVE-2008-0506?

CVE-2008-0506 is a vulnerability in N/a. Published 2008-01-31.

Is CVE-2008-0506 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2008-0506

include/imageObjectIM.class.php in Coppermine Photo Gallery (CPG) before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) qualit…

EPSS: 0.884 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

www.waraxe.us/advisory-65.html (x_refsource_MISC)
coppermine-gallery.net/forum/index.php (x_refsource_CONFIRM)
ADV-2008-0367 (vdb-entry, x_refsource_VUPEN)
27512 (vdb-entry, x_refsource_BID)
28682 (x_refsource_SECUNIA, third-party-advisory)
20080130 [waraxe-2008-SA#065] - Remote Shell Command Execution in Coppermine 1.4.14 (mailing-list, x_refsource_BUGTRAQ)
1019286 (vdb-entry, x_refsource_SECTRACK)
5019 (exploit, x_refsource_EXPLOIT-DB)

Frequently asked questions

What is CVE-2008-0506?: CVE-2008-0506 is a vulnerability in N/a. Published 2008-01-31.
Is CVE-2008-0506 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.