Lucene search

[email protected]CVE-2007-1710

HistoryMar 27, 2007 - 1:19 a.m.

CVE-2007-1710

2007-03-2701:19:00

[email protected]

web.nvd.nist.gov

cve-2007-1710

php

readfile

vulnerability

bypass

safe mode

nvd

4.3 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.3%

JSON

The readfile function in PHP 4.4.4, 5.1.6, and 5.2.1 allows context-dependent attackers to bypass safe_mode restrictions and read arbitrary files by referring to local files with a certain URL syntax instead of a pathname syntax, as demonstrated by a filename preceded a “php://…/…/” sequence.

Affected configurations

NVD

Node

phpphpMatch4.4.4

phpphpMatch5.1.6

phpphpMatch5.2.1

CPENameOperatorVersion
php:phpphpeq4.4.4
php:phpphpeq5.1.6
php:phpphpeq5.2.1

CPE	Name	Operator	Version
php:php	php	eq	4.4.4
php:php	php	eq	5.1.6
php:php	php	eq	5.2.1

References

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01056506

h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?lang=en&cc=us&objectID=c01086137

secunia.com/advisories/25423

secunia.com/advisories/25850

www.vupen.com/english/advisories/2007/1991

www.vupen.com/english/advisories/2007/2374

www.exploit-db.com/exploits/3573

4.3 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:S/C:P/I:P/A:P

7.5 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

32.3%

JSON

Related for CVE-2007-1710

ubuntucve1 securityvulns1 nvd1 prion1 cvelist1 redhatcve1 nessus1