Lucene search

K
cve[email protected]CVE-2010-3436
HistoryNov 09, 2010 - 1:00 a.m.

CVE-2010-3436

2010-11-0901:00:00
CWE-264
web.nvd.nist.gov
92
2
cve-2010-3436
fopen_wrappers.c
php 5.3.x
5.3.3
open_basedir
remote attack

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.3%

fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass open_basedir restrictions via vectors related to the length of a filename.

References

Social References

More

6.3 Medium

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

77.3%

Related for CVE-2010-3436