Lucene search
K

10 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 6:14 a.m.4 views

SUSE CVE-2006-4625

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safemode and openbasedir, via the inirestore function, which resets the values to their php.ini Master Value defaults...

3.6CVSS6.8AI score0.00908EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2022/08/26 12:0 a.m.24 views

Ubuntu: Security Advisory (USN-362-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.5AI score0.15388EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2012/06/21 12:0 a.m.482 views

PHP < 5.2.0 Multiple Vulnerabilities

PHP is prone to multiple vulnerabilities. Copyright C 2012 NopSec Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or...

10CVSS7.9AI score0.0751EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2007/11/10 12:0 a.m.45 views

Ubuntu 5.04 / 5.10 / 6.06 LTS : php4, php5 vulnerabilities (USN-362-1)

The stripos function did not check for invalidly long or empty haystack strings. In an application that uses this function on arbitrary untrusted data this could be exploited to crash the PHP interpreter. CVE-2006-4485 An integer overflow was discovered in the PHP memory allocation handling. On...

10CVSS6AI score0.15388EPSS
Exploits2References5
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.41 views

Mandrake Linux Security Advisory : php (MDKSA-2006:185)

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safemode and openbasedir, via the inirestore function, which resets the values to their php.ini Master Value defaults. CVE-2006-4625 A race condition in the symlink functi...

6.2CVSS5.3AI score0.00908EPSS
Exploits3References2
Tenable Nessus
Tenable Nessus
added 2007/02/18 12:0 a.m.201 views

SUSE-SA:2006:059: php4,php5

The remote host is missing the patch for the advisory SUSE-SA:2006:059 php4,php5. The inirestore method could be exploited to reset options such as openbasedir when set via the web server config file to their default value set in php.ini CVE-2006-4625. Additionally php5 on all products as well as...

10CVSS5.7AI score0.15388EPSS
Exploits2
Packet Storm
Packet Storm
added 2006/09/13 12:0 a.m.69 views

phpBypass.txt

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.1.6 / 4.4.4 Critical phpadmin bypass by inirestore Author: Maksymilian Arciemowicz cXIb8O3 Date: - - Written: 05.09.2006 - - Public: 09.09.2006 SecurityAlert Id: 42 CVE: CVE-2006-4625 SecurityRisk: High Affected Software: PHP 5.1.6 / 4.4.4 = x...

3.6CVSS6.4AI score0.00908EPSS
Exploits2
UbuntuCve
UbuntuCve
added 2006/09/12 4:7 p.m.35 views

CVE-2006-4625

PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safemode and openbasedir, via the inirestore function, which resets the values to their php.ini Master Value defaults...

3.6CVSS5.8AI score0.00908EPSS
Exploits2References2
CVE
CVE
added 2006/09/12 4:0 p.m.107 views

CVE-2006-4625

CVE-2006-4625 affects PHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6. The root cause is the ini_restore function resetting values to php.ini Master Value defaults, allowing local users to bypass Apache httpd.conf protections such as safe_mode and open_basedir. The provided documents describe the vulne...

3.6CVSS6AI score0.00908EPSS
Exploits2References21Affected Software1
securityvulns
securityvulns
added 2006/09/11 12:0 a.m.391 views

PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore&#40;&#41;

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 PHP 5.1.6 / 4.4.4 Critical phpadmin bypass by inirestore Author: Maksymilian Arciemowicz cXIb8O3 Date: - - Written: 05.09.2006 - - Public: 09.09.2006 SecurityAlert Id: 42 CVE: CVE-2006-4625 SecurityRisk: High Affected Software: PHP 5.1.6 / 4.4.4 = x...

3.6CVSS5.7AI score0.00908EPSS
Exploits2
Rows per page
Query Builder