Описание
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | DNE | |
| edgy | ignored | end of life, was needed |
| feisty | DNE | |
| gutsy | DNE | |
| hardy | DNE | |
| intrepid | DNE | |
| jaunty | DNE | |
| karmic | DNE | |
| upstream | needed |
Показывать по
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | |
| devel | released | 5.2.6-1ubuntu4 |
| edgy | ignored | end of life, was needed |
| feisty | released | 5.2.1-0ubuntu1.6 |
| gutsy | released | 5.2.3-1ubuntu6.4 |
| hardy | released | 5.2.4-2ubuntu5.3 |
| intrepid | released | 5.2.6-1ubuntu4 |
| jaunty | released | 5.2.6-1ubuntu4 |
| karmic | released | 5.2.6-1ubuntu4 |
| upstream | released | 5.2.6 |
Показывать по
5 Medium
CVSS2
Связанные уязвимости
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563.
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563.
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5. ...
curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a \x00 sequence, a different vulnerability than CVE-2006-2563.
5 Medium
CVSS2