CVE-2007-4010

2007-07-25T20:30:00
ID CVE-2007-4010
Type cve
Reporter NVD
Modified 2017-09-28T21:29:11

Description

The win32std extension in PHP 5.2.3 does not follow safe_mode and disable_functions restrictions, which allows remote attackers to execute arbitrary commands via the win_shell_execute function.