Lucene search

[email protected]CVE-2006-4481

HistoryAug 31, 2006 - 9:04 p.m.

CVE-2006-4481

2006-08-3121:04:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

php

security

vulnerability

cve-2006-4481

file_exists

imap_reopen

safe_mode

open_basedir

6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

26.9%

JSON

The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log function is covered by CVE-2006-3011, and the imap_open function is covered by CVE-2006-1017.

CPENameOperatorVersion
php:phpphpeq5.1.2
php:phpphpeq5.1.1
php:phpphpeq5.1.4
php:phpphpeq5.1.0

CPE	Name	Operator	Version
php:php	php	eq	5.1.2
php:php	php	eq	5.1.1
php:php	php	eq	5.1.4
php:php	php	eq	5.1.0

References

secunia.com/advisories/21546

secunia.com/advisories/21768

secunia.com/advisories/21842

secunia.com/advisories/22039

www.mandriva.com/security/advisories?name=MDKSA-2006:162

www.novell.com/linux/security/advisories/2006_52_php.html

www.php.net/release_5_1_5.php

www.securityfocus.com/bid/19582

www.ubuntu.com/usn/usn-342-1

www.vupen.com/english/advisories/2006/3318

6 Medium

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

26.9%

JSON

Related for CVE-2006-4481

ubuntucve3 securityvulns2 nessus9 openvas3 ubuntu2 seebug1 cve2 prion1 freebsd1 suse1