Dolphin "eval()" PHP Code Execution Vulnerability


Description   A vulnerability has been discovered in Dolphin, which can be exploited by malicious users to compromise a vulnerable system.
Input passed via the "bubbles" parameter to member_menu_queries.php (when "action" is set to "get_bubbles_values") is not properly sanitised before being used in an "eval()" call. This can be exploited to execute arbitrary PHP code.
The vulnerability is confirmed in version 7.0.7. Other versions may also be affected.
     
Vulnerable Products   Vulnerable Software:
Dolphin 7.x
     
Solution   Update to version 7.0.8.
     
CVE  
     
References   http://www.boonex.com/n/dolphin-7-0-8-released
     
Vulnerability Manager Detection   No
     
IPS Protection  
ASQ Engine alarm Available Since
XMLRPC: possible remote code injection
3.2.0
PHP : HTML code injection prevention - suspicious GLOBALS variable
3.2.0
PHP : Remote file inclusion prevention: suspicious GLOBALS variable
3.2.0
     


 
 
 
 
 Risk level 
High 

 Vulnerability First Public Report Date 
2011-10-19 

 Target Type 
Server 

 Possible exploit 
Remote