From 38b5abdb2bfea96761fa1bd09deeb46c4a5f876d Mon Sep 17 00:00:00 2001
From: Metasploit <metasploit@rapid7.com>
Date: Fri, 8 Feb 2019 16:38:54 -0800
Subject: [PATCH] automatic module_metadata_base.json update

---
 db/modules_metadata_base.json | 11 ++++++++---
 1 file changed, 8 insertions(+), 3 deletions(-)

diff --git a/db/modules_metadata_base.json b/db/modules_metadata_base.json
index d5b7fd17d9..613e862815 100644
--- a/db/modules_metadata_base.json
+++ b/db/modules_metadata_base.json
@@ -51154,13 +51154,17 @@
     "author": [
       "Anton Lopanitsyn",
       "Twoster",
-      "h00die"
+      "h00die",
+      "Paolo Serracino",
+      "Pietro Minniti",
+      "Damiano Proietti"
     ],
-    "description": "The imap_open function within php, if called without the /norsh flag, will attempt to preauthenticate an\n        IMAP session.  On Debian based systems, including Ubuntu, rsh is mapped to the ssh binary.  Ssh's ProxyCommand\n        option can be passed from imap_open to execute arbitrary commands.\n        While many custom applications may use imap_open, this exploit works against the following applications:\n        e107 v2, prestashop, SuiteCRM, as well as Custom, which simply prints the exploit strings for use.\n        Prestashop exploitation requires the admin URI, and administrator credentials.\n        suiteCRM/e107/hostcms require administrator credentials.",
+    "description": "The imap_open function within php, if called without the /norsh flag, will attempt to preauthenticate an\n        IMAP session.  On Debian based systems, including Ubuntu, rsh is mapped to the ssh binary.  Ssh's ProxyCommand\n        option can be passed from imap_open to execute arbitrary commands.\n        While many custom applications may use imap_open, this exploit works against the following applications:\n        e107 v2, prestashop, SuiteCRM, as well as Custom, which simply prints the exploit strings for use.\n        Prestashop exploitation requires the admin URI, and administrator credentials.\n        suiteCRM/e107 require administrator credentials.  Fixed in php 5.6.39.",
     "references": [
       "URL-https://web.archive.org/web/20181118213536/https://antichat.com/threads/463395",
       "URL-https://github.com/Bo0oM/PHP_imap_open_exploit",
       "EDB-45865",
+      "EDB-46136",
       "URL-https://bugs.php.net/bug.php?id=76428",
       "CVE-2018-19518",
       "CVE-2018-1000859"
@@ -51189,9 +51193,10 @@
       "prestashop",
       "suitecrm",
       "e107v2",
+      "Horde IMP H3",
       "custom"
     ],
-    "mod_time": "2018-12-06 14:59:05 +0000",
+    "mod_time": "2019-01-18 19:43:45 +0000",
     "path": "/modules/exploits/linux/http/php_imap_open_rce.rb",
     "is_install_path": true,
     "ref_name": "linux/http/php_imap_open_rce",