CVE-2016-10846 - cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube datab

CVE-2016-10846

Summary

cPanel before 11.54.0.4 allows arbitrary file-chown and file-chmod operations during Roundcube database conversions (SEC-79).

References

https://documentation.cpanel.net/display/CL/54+Change+Log

Vulnerable Configurations

cpe:2.3:a:cpanel:cpanel:11.48.0.5:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.5:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.7:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.7:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.11:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.11:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.12:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.12:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.2.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.2.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.3.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.4:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.4:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.48.4.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.4:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.4:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.7:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.7:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.10:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.10:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.12:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.12:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.14:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.14:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.15:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.15:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.17:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.17:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.19:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.19:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.20:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.20:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.22:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.22:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.23:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.23:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.25:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.25:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.27:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.27:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.29:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.29:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.30:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.0.30:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.50.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.98:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.98:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.101:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.101:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.105:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.105:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.113:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.113:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.114:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.114:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.116:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.116:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.121:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.121:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.128:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.128:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.140:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.140:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.149:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.149:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.159:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.159:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.163:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.163:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.165:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.51.9999.165:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.5:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.5:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.6:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.8:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.9:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.10:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.10:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.13:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.14:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.14:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.15:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.15:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.17:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.17:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.18:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.18:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.20:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.20:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.21:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.21:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.22:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.22:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.23:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.23:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.24:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.0.24:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.2:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.52.2.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.0.:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.0.:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cpanel:cpanel:11.54.0.1:*:*:*:*:*:*:*

CVSS

Base:	8.5 (as of 08-08-2019 - 19:29)
Impact:
Exploitability:

CWE

CWE-275

CAPEC

Leverage Executable Code in Non-Executable Files
An attack of this type exploits a system's trust in configuration and resource files. When the executable loads the resource (such as an image file or configuration file) the attacker has modified the file to either execute malicious code directly or manipulate the target process (e.g. application server) to execute based on the malicious configuration parameters. Since systems are increasingly interrelated mashing up resources from local and remote sources the possibility of this attack occurring is high.
Using Malicious Files
An attack of this type exploits a system's configuration that allows an attacker to either directly access an executable file, for example through shell access; or in a possible worst case allows an attacker to upload a file and then execute it. Web servers, ftp servers, and message oriented middleware systems which have many integration points are particularly vulnerable, because both the programmers and the administrators must be in synch regarding the interfaces and the correct privileges for each interface.

Access

Vector	Complexity	Authentication
NETWORK	LOW	SINGLE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	NONE

cvss-vector via4

AV:N/AC:L/Au:S/C:C/I:C/A:N

refmap via4

misc

https://documentation.cpanel.net/display/CL/54+Change+Log

Last major update

08-08-2019 - 19:29

Published

01-08-2019 - 16:15

Last modified

08-08-2019 - 19:29