Описание
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | released | 5.1.2-1ubuntu3.13 |
| devel | not-affected | 5.2.5-3ubuntu1 |
| feisty | ignored | end of life, was needed |
| gutsy | released | 5.2.3-1ubuntu6.5 |
| hardy | released | 5.2.4-2ubuntu5.5 |
| intrepid | not-affected | 5.2.5-3ubuntu1 |
| upstream | released | 5.2.5 |
Показывать по
EPSS
6.9 Medium
CVSS2
Связанные уязвимости
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
PHP before 5.2.5 allows local users to bypass protection mechanisms co ...
PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
EPSS
6.9 Medium
CVSS2