Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

redhat логотип

CVE-2019-11044

Опубликовано: 23 нояб. 2019
Источник: redhat
CVSS3: 0
EPSS Низкий

Описание

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access.

A flaw was discovered in the link function in PHP. When compiled on Windows, it does not correctly handle paths containing NULL bytes. An attacker could abuse this flaw to bypass application checks on file paths.

Отчет

This issue did not affect the versions of php as shipped with Red Hat Enterprise Linux 5, 6, 7, and 8 as the flaw only affects Windows builds. See CVE-2006-7243 for the Linux version of this flaw.

Затронутые пакеты

ПлатформаПакетСостояниеРекомендацияРелиз
Red Hat Enterprise Linux 5phpNot affected
Red Hat Enterprise Linux 5php53Not affected
Red Hat Enterprise Linux 6phpNot affected
Red Hat Enterprise Linux 7phpNot affected
Red Hat Enterprise Linux 8php:7.2/phpNot affected
Red Hat Enterprise Linux 8php:7.3/phpNot affected
Red Hat Software Collectionsrh-php72-phpNot affected
Red Hat Software Collectionsrh-php73-phpNot affected

Показывать по

Ссылки на источники

Дополнительная информация

Дефект:
CWE-170
https://bugzilla.redhat.com/show_bug.cgi?id=1789069php: link function accepts filenames with embedded null byte and treats them as terminating at that byte on Windows

EPSS

Процентиль: 88%
0.03903
Низкий

0 Low

CVSS3

Связанные уязвимости

ubuntu логотип

CVE-2019-11044

CVSS3: 3.7
ubuntu
больше 5 лет назад

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access.

nvd логотип

CVE-2019-11044

CVSS3: 3.7
nvd
больше 5 лет назад

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access.

debian логотип

CVE-2019-11044

CVSS3: 3.7
debian
больше 5 лет назад

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Wi ...

github логотип

GHSA-c8cf-pj9v-fcr9

CVSS3: 7.5
github
около 3 лет назад

In PHP versions 7.2.x below 7.2.26, 7.3.x below 7.3.13 and 7.4.0 on Windows, PHP link() function accepts filenames with embedded \0 byte and treats them as terminating at that byte. This could lead to security vulnerabilities, e.g. in applications checking paths that the code is allowed to access.

fstec логотип

BDU:2020-01688

CVSS3: 7.5
fstec
больше 5 лет назад

Уязвимость функции link интерпретатора языка программирования PHP, позволяющая нарушителю получить несанкционированный доступ к информации

EPSS

Процентиль: 88%
0.03903
Низкий

0 Low

CVSS3