一、 漏洞 CVE-2016-10045 基础信息

受影响产品

二、漏洞 CVE-2016-10045 的公开POC

三、漏洞 CVE-2016-10045 的情报信息

• http://packetstormsecurity.com/files/140286/PHPMailer-Remote-Code-Execution.htmlx_refsource_MISC
• https://github.com/PHPMailer/PHPMailer/releases/tag/v5.2.20x_refsource_CONFIRM
• https://developer.joomla.org/security-centre/668-20161205-phpmailer-security-advisory.htmlx_refsource_CONFIRM
• http://www.rapid7.com/db/modules/exploit/multi/http/phpmailer_arg_injectionx_refsource_MISC
• http://packetstormsecurity.com/files/140350/PHPMailer-Sendmail-Argument-Injection.htmlx_refsource_MISC
• https://github.com/PHPMailer/PHPMailer/wiki/About-the-CVE-2016-10033-and-CVE-2016-10045-vulnerabilitiesx_refsource_CONFIRM
• https://legalhackers.com/advisories/PHPMailer-Exploit-Remote-Code-Exec-CVE-2016-10045-Vuln-Patch-Bypass.htmlx_refsource_MISC
• https://www.exploit-db.com/exploits/42221/exploitx_refsource_EXPLOIT-DB
• http://www.securityfocus.com/bid/95130vdb-entryx_refsource_BID
• https://www.exploit-db.com/exploits/40986/exploitx_refsource_EXPLOIT-DB
• https://www.exploit-db.com/exploits/40969/exploitx_refsource_EXPLOIT-DB
• http://www.securitytracker.com/id/1037533vdb-entryx_refsource_SECTRACK
• http://openwall.com/lists/oss-security/2016/12/28/1mailing-listx_refsource_MLIST
• http://www.securityfocus.com/archive/1/539967/100/0/threadedmailing-listx_refsource_BUGTRAQ
• http://seclists.org/fulldisclosure/2016/Dec/81mailing-listx_refsource_FULLDISC
• https://nvd.nist.gov/vuln/detail/CVE-2016-10045

新漏洞

四、漏洞 CVE-2016-10045 的评论