CVE-2004-1392

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...

CVE-2004-1392

CVE-2004-1392 affects PHP 4.0 with the curl extension: remote attacker can bypass open_basedir and read arbitrary files via a file:// URL argument to curl_init. Public advisories RHSA-2005:405/406 (CentOS/Red Hat) describe updated PHP packages that fix this issue (curl_safe-file lookup; can impac...

USN-66-1: PHP vulnerabilities

FraMe from kernelpanik.org reported that the cURL module does not respect openbasedir restrictions. As a result, scripts which used cURL to open files with an user-specified path could read arbitrary local files outside of the openbasedir directory. Stefano Di Paola discovered a vulnerability in...

CVE-2004-1392

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...

CVE-2004-1392

PHP 4.0 with cURL functions allows remote attackers to bypass the openbasedir setting and read arbitrary files via a file: URL argument to the curlinit function...

PHP4 cURL functions bypass open_basedir

==================================================== Subject: PHP4 cURL functions bypass openbasedir Author: frame at kernelpanik.org Product: PHP4 compile with cURL not tested in PHP5 Vendor: PHP/Zend Vendor URL: www.php.net Tipe: Local Risk: Low/Medium...

PHP 4.x5 - cURL open_basedir Restriction Bypass

PHP 4.x5 - cURL openbasedir Restriction Bypass source: https://www.securityfocus.com/bid/11557/info It is reported that cURL allows malicious users to bypass 'openbasedir' restrictions in PHP scripts. This issue is due to a failure of the cURL module to properly enforce PHPs 'openbasedir'...

PHP 4.x/5 - cURL 'open_basedir' Restriction Bypass

source: https://www.securityfocus.com/bid/11557/info It is reported that cURL allows malicious users to bypass 'openbasedir' restrictions in PHP scripts. This issue is due to a failure of the cURL module to properly enforce PHPs 'openbasedir' restriction. Users with the ability to create or modif...

GLSA-200407-13 : PHP: Multiple security vulnerabilities

The remote host is affected by the vulnerability described in GLSA-200407-13 PHP: Multiple security vulnerabilities Several security vulnerabilities were found and fixed in version 4.3.8 of PHP. The striptags function, used to sanitize user input, could in certain cases allow tags containing \0...

move_uploaded_file breaks safe_mode restrictions in PHP

Hey Its possible to circumvent probadly spelled wrong PHP safemode restrictions by using moveuploadedfile. You take this nasty script and you have domain whatever.com and your directory path is /domains/whatever.com/ ? $file = $HTTPPOSTFILES'file''name'; $type = $HTTPPOSTFILES'file''type'; $size ...

PHP 3.0.x4.x - Move_Uploaded_File open_basedir Circumvention

PHP 3.0.x4.x - MoveUploadedFile openbasedir Circumvention source: https://www.securityfocus.com/bid/4325/info PHP is a server side scripting language, designed to be embedded within HTML files. It is available for Windows, Linux, and many Unix based operating systems. It is commonly used for web...

PHP 3.0.x/4.x - Move_Uploaded_File open_basedir Circumvention

source: https://www.securityfocus.com/bid/4325/info PHP is a server side scripting language, designed to be embedded within HTML files. It is available for Windows, Linux, and many Unix based operating systems. It is commonly used for web development, and is very widely deployed. It has been...