PHP safe mode bypass vulneraebility - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

PHP safe mode bypass vulneraebility
Published: 24.01.2008
Source: BUGTRAQ
SecurityVulns ID: 8600
Type: local
Level: 5/10
Description: It's possible to access files behind sandbox directory with cURL module.

Affected: PHP : PHP 5.2
CVE: CVE-2007-4850

Original document Maksymilian Arciemowicz, PHP 5.2.5 cURL safe_mode bypass (24.01.2008)

Discuss: Read or add your comments to this news (0 comments)