Lucene search
RootSSV:1935HistoryJun 28, 2007 - 12:00 a.m.
PHP .Htaccess Safe_Mode和Open_Basedir限制绕过漏洞
2007-06-2800:00:00
Root
www.seebug.org
20
0.017 Low
EPSS
Percentile
86.3%
BUGTRAQ ID: 24661
CVE ID:CVE-2007-3378
CNCVE ID:CNCVE-20073378
PHP是一款广泛使用的WEB开发脚本语言。
PHP存在’safe_mode’和’open_basedir’限制绕过问题,远程攻击者可以利用漏洞写文件到未授权系统位置。
当使用PHP作为Apache模块,可以通过在.htaccess文件中使用指示进行培植二十时亿兆时毫 ,这些选项可用于更改权限等。但是在不同的函数中可能绕过safe_mode或open_basedir限制,如通过.htaccess设置session.save_path,在session_save_path()和ini_set()中,save_path检查safe_mode和open_basedir,但在.htaccess中的值由于没有检查可被绕过。
PHP PHP 5.2.3
PHP PHP 4.4.7
- Slackware Linux 10.2
- Slackware Linux 11.0
- Slackware Linux -current
目前没有解决方案提供:
<a href=“http://www.php.net/” target=“_blank”>http://www.php.net/</a>
cxib# ls -la /www/cxib/
total 14
drwxr-xr-x 3 cxib www 512 Feb 16 20:20 .
drwxr-xr-x 11 www www 7168 Feb 16 20:07 ..
-&nbs
Related
prion
prion
Design/Logic Flaw
2007-06-29 18:30:00
securityvulns
securityvulns
PHP safe mode protection bypass with htaccess
2007-11-26 00:00:00
[Full-disclosure] PHP 5.2.3 PHP 4.4.7, htaccess safemode and open_basedir Bypass Vulnerability
2007-06-27 00:00:00
PHP 5.2.4 mail.force_extra_parameters unsecure
2007-11-26 00:00:00
redhatcve
redhatcve
CVE-2007-3378
2015-10-30 10:14:33
cve
cve
CVE-2007-3378
2007-06-29 18:30:00
ubuntucve
ubuntucve
CVE-2007-3378
2007-06-29 00:00:00
openvas
openvas
HP-UX Update for Apache HPSBUX02308
2009-05-05 00:00:00
HP-UX Update for Apache HPSBUX02308
2009-05-05 00:00:00
Slackware Advisory SSA:2008-045-03 php
2012-09-11 00:00:00
nessus
nessus
Slackware 10.2 / 11.0 : php (SSA:2008-045-03)
2008-02-18 00:00:00
PHP < 4.4.8 Multiple Vulnerabilities
2008-01-03 00:00:00
freebsd
freebsd
php -- multiple vulnerabilities
2007-08-30 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00