CVE-2007-4010

2007-07-26T00:30:00
ID CVE-2007-4010
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:29:00

Description

The win32std extension in PHP 5.2.3 does not follow safe_mode and disable_functions restrictions, which allows remote attackers to execute arbitrary commands via the win_shell_execute function.