#VU4756 Information disclosure in PHPMailer - CVE-2017-5223
Published: January 16, 2017 / Updated: September 14, 2018
Vulnerability identifier: #VU4756
Vulnerability risk: Medium
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Green
CVE-ID: CVE-2017-5223
CWE-ID: CWE-200
Exploitation vector: Remote access
Exploit availability:
Public exploit is available
Vulnerable software:
PHPMailer
PHPMailer
Software vendor:
phpmailer.sourceforge.net
phpmailer.sourceforge.net
Description
The vulnerability allows a remote attacker to obtain access to potentially sensitive information.
The vulnerability exists in PHPMailer before 5.2.22 when handling HTML documents using msgHTML() method. A remote attacker can create a specially crafted message, containing relative links to images withing message and attach arbitrary local file to e-mail message.
Successful exploitation of this vulnerability may allow an attacker to send out arbitrary system files as email attachments.
The vulnerability exists in PHPMailer before 5.2.22 when handling HTML documents using msgHTML() method. A remote attacker can create a specially crafted message, containing relative links to images withing message and attach arbitrary local file to e-mail message.
Successful exploitation of this vulnerability may allow an attacker to send out arbitrary system files as email attachments.
Remediation
Update to version 5.2.22.