CVE-2007-4825

Опубликовано: 12 сент. 2007

Источник: debian

Описание

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

Пакеты

Пакет	Статус	Версия исправления	Релиз	Тип
php5	fixed	5.2.5-1		package
php4	not-affected			package

Примечания

php5 PoC can be reproduced, basedir violations not treated as security problems

Связанные уязвимости

CVE-2007-4825

ubuntu

больше 18 лет назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

CVE-2007-4825

nvd

больше 18 лет назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.

GHSA-jpfm-jfvg-56mp

github

почти 4 года назад

Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers to bypass open_basedir restrictions and possibly execute arbitrary code via a .. (dot dot) in the dl function.