Lucene search

[email protected]NVD:CVE-2015-4025

HistoryJun 09, 2015 - 6:59 p.m.

CVE-2015-4025

2015-06-0918:59:07

CWE-19

[email protected]

web.nvd.nist.gov

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

AI Score

8.5

Confidence

High

EPSS

0.021

Percentile

89.3%

JSON

PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character in certain situations, which allows remote attackers to bypass intended extension restrictions and access files or directories with unexpected names via a crafted argument to (1) set_include_path, (2) tempnam, (3) rmdir, or (4) readlink. NOTE: this vulnerability exists because of an incomplete fix for CVE-2006-7243.

Affected configurations

Nvd

Node

applemac_os_xRange≤10.10.4

Node

phpphpRange≤5.4.40

phpphpMatch5.4.39

phpphpMatch5.5.0

phpphpMatch5.5.0alpha1

phpphpMatch5.5.0alpha2

phpphpMatch5.5.0alpha3

phpphpMatch5.5.0alpha4

phpphpMatch5.5.0alpha5

phpphpMatch5.5.0alpha6

phpphpMatch5.5.0beta1

phpphpMatch5.5.0beta2

phpphpMatch5.5.0beta3

phpphpMatch5.5.0beta4

phpphpMatch5.5.0rc1

phpphpMatch5.5.0rc2

phpphpMatch5.5.1

phpphpMatch5.5.2

phpphpMatch5.5.3

phpphpMatch5.5.4

phpphpMatch5.5.5

phpphpMatch5.5.6

phpphpMatch5.5.7

phpphpMatch5.5.8

phpphpMatch5.5.9

phpphpMatch5.5.10

phpphpMatch5.5.11

phpphpMatch5.5.12

phpphpMatch5.5.13

phpphpMatch5.5.14

phpphpMatch5.5.18

phpphpMatch5.5.19

phpphpMatch5.5.20

phpphpMatch5.5.21

phpphpMatch5.5.22

phpphpMatch5.5.23

phpphpMatch5.5.24

phpphpMatch5.6.0alpha1

phpphpMatch5.6.0alpha2

phpphpMatch5.6.0alpha3

phpphpMatch5.6.0alpha4

phpphpMatch5.6.0alpha5

phpphpMatch5.6.0beta1

phpphpMatch5.6.0beta2

phpphpMatch5.6.0beta3

phpphpMatch5.6.0beta4

phpphpMatch5.6.2

phpphpMatch5.6.3

phpphpMatch5.6.4

phpphpMatch5.6.5

phpphpMatch5.6.6

phpphpMatch5.6.7

phpphpMatch5.6.8

Node

redhatenterprise_linux_desktopMatch7.0

redhatenterprise_linux_hpc_nodeMatch7.0

redhatenterprise_linux_hpc_node_eusMatch7.1

redhatenterprise_linux_serverMatch7.0

redhatenterprise_linux_server_eusMatch7.1

redhatenterprise_linux_workstationMatch7.0

Node

redhatenterprise_linuxMatch6.0

redhatenterprise_linuxMatch7.0

VendorProductVersionCPE
applemac_os_x*cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:*
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
phpphp5.4.39cpe:2.3:a:php:php:5.4.39:*:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:*:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha1:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha2:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha3:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha4:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha5:*:*:*:*:*:*
phpphp5.5.0cpe:2.3:a:php:php:5.5.0:alpha6:*:*:*:*:*:*

Vendor	Product	Version	CPE
apple	mac_os_x	*	cpe:2.3:o:apple:mac_os_x::::::::
php	php	*	cpe:2.3:a:php:php::::::::
php	php	5.4.39	cpe:2.3:a:php:php:5.4.39:::::::*
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:::::::*
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha1::::::
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha2::::::
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha3::::::
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha4::::::
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha5::::::
php	php	5.5.0	cpe:2.3:a:php:php:5.5.0:alpha6::::::