Описание
Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.
Пакеты
| Пакет | Статус | Версия исправления | Релиз | Тип |
|---|---|---|---|---|
| php5 | fixed | 5.2.5-1 | package | |
| php4 | not-affected | package |
Примечания
php5 PoC can be reproduced, basedir violations not treated as security problems
EPSS
Процентиль: 40%
0.00179
Низкий
Связанные уязвимости
nvd
почти 18 лет назад
Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.
github
около 3 лет назад
Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.
EPSS
Процентиль: 40%
0.00179
Низкий