PHP 5 does not enforce safe_mode restrictions allowing attackers to write to arbitrary file
Reporter | Title | Published | Views | Family All 32 |
---|---|---|---|---|
CVE | CVE-2008-5625 | 17 Dec 200817:30 | – | cve |
Prion | Unrestricted file upload | 17 Dec 200817:30 | – | prion |
Cvelist | CVE-2008-5625 | 17 Dec 200817:00 | – | cvelist |
UbuntuCve | CVE-2008-5625 | 17 Dec 200800:00 | – | ubuntucve |
Exploit DB | PHP 5.2.6 - 'error_log' Safe_mode Bypass | 20 Nov 200800:00 | – | exploitdb |
OpenVAS | PHP Security Bypass and File Writing Vulnerability (Dec 2008) | 26 Dec 200800:00 | – | openvas |
OpenVAS | Mandrake Security Advisory MDVSA-2009:045 (php) | 23 Feb 200900:00 | – | openvas |
OpenVAS | Mandrake Security Advisory MDVSA-2009:045 (php) | 23 Feb 200900:00 | – | openvas |
OpenVAS | Ubuntu: Security Advisory (USN-720-1) | 5 Jun 200900:00 | – | openvas |
OpenVAS | PHP < 5.2.7 Multiple Vulnerabilities | 17 Aug 202000:00 | – | openvas |
Source | Link |
---|---|
osvdb | www.osvdb.org/52205 |
php | www.php.net/ChangeLog-5.php |
securityreason | www.securityreason.com/achievement_securityalert/57 |
securityfocus | www.securityfocus.com/bid/32383 |
archives | www.archives.neohapsis.com/archives/bugtraq/2008-11/0152.html |
marc | www.marc.info/ |
mandriva | www.mandriva.com/security/advisories |
exploit-db | www.exploit-db.com/exploits/7171 |
securityfocus | www.securityfocus.com/archive/1/501376/100/0/threaded |
wiki | www.wiki.rpath.com/Advisories:rPSA-2009-0035 |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo