CVE-2008-7002

PHP 5.2.5 does not enforce a openbasedir and b safemodeexecdir restrictions for certain functions, which might allow local users to bypass intended access restrictions and call programs outside of the intended directory via the 1 exec, 2 system, 3 shellexec, 4 passthru, or 5 popen functions,...

Information disclosure

PHP 5.2.5 does not enforce a openbasedir and b safemodeexecdir restrictions for certain functions, which might allow local users to bypass intended access restrictions and call programs outside of the intended directory via the 1 exec, 2 system, 3 shellexec, 4 passthru, or 5 popen functions,...

CVE-2008-7002

CVE-2008-7002 : PHP 5.2.5 may bypass open_basedir and safe_mode_exec_dir restrictions for functions such as exec, system, shell_exec, passthru, and popen, potentially allowing a local user to run programs outside the intended directory (e.g., via pathnames like C:). The connected sources reiterat...

PHP 5.2.10 safe_mode Bypass

PHP safemode bypass with exec/system/passthru Once again php public new version :php5.2.10 ,and it fix lots of bugs, like this : Bug 45997safemode bypass with exec/system/passthru incorrect fix php5.2.10 ... b = strrchrcmd, PHPDIRSEPARATOR; ifdef PHPWIN32 if b && b == '\' && b == cmd...

PHP多个函数'safe_mode_exec_dir'和'open_basedir'限制绕过漏洞

BUGTRAQ ID: 31064 CNCAN ID：CNCAN-2008090906 PHP是一款流行的网络编程语言。 PHP 5.2.5存在'safemodeexecdir'和'openbasedir'限制绕过问题，本地攻击者可以利用漏洞以应用程序权限执行任意PHP代码。 从本地调用函数"exec", "system", "shellexec", "passthru", "popen"，PHP没有进行正确检查，可导致绕过"openbasedir"和"safemodeexecdir"限制。 PHP 5.2.5 目前没有解决方案提供： http://www.php.net/ ?php...

PHP 5.2.5 - Multiple functions 'safe_mode_exec_dir' / 'open_basedir' Restriction Bypass Vulnerabilities

source: https://www.securityfocus.com/bid/31064/info PHP is prone to 'safemodeexecdir' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitrary code. These vulnerabilities would be an issue in shared-hosting configurations where multip...

PHP 5.2.5 - Multiple functions safe_mode_exec_dir open_basedir Restriction Bypass Vulnerabilities

PHP 5.2.5 - Multiple functions safemodeexecdir openbasedir Restriction Bypass Vulnerabilities source: https://www.securityfocus.com/bid/31064/info PHP is prone to 'safemodeexecdir' and 'openbasedir' restriction-bypass vulnerabilities. Successful exploits could allow an attacker to execute arbitra...