CVE-2007-2519
The MITRE CVE dictionary describes this issue as:
Find out more about CVE-2007-2519 from the MITRE CVE dictionary dictionary and NIST NVD.
Statement
Installation of a PEAR package from an untrusted source could allow malicious code to be installed and potentially executed by the root user. This is true regardless of the existence of this particular bug in the PEAR installer, so the bug would not be treated as security-sensitive. As when handling system RPM packages, the root user must always ensure that any packages installed are from a trusted source and have been packaged correctly.
CVE description copyright © 2017, The MITRE Corporation
