CVE-2007-4825

Опубликовано: 12 сент. 2007

Источник: debian

EPSS Низкий

Описание

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php5	fixed	5.2.5-1		package
php4	not-affected			package

Примечания

php5 PoC can be reproduced, basedir violations not treated as security problems

EPSS

Процентиль: 50%

0.00268

Низкий

Связанные уязвимости

CVE-2007-4825

ubuntu

около 18 лет назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

CVE-2007-4825

nvd

около 18 лет назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

GHSA-jpfm-jfvg-56mp

github

больше 3 лет назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

EPSS

Процентиль: 50%

0.00268

Низкий