Lucene search
RootSSV:60290HistoryJul 24, 2012 - 12:00 a.m.
PHP 5.3.x 'open_basedir'安全限制绕过漏洞
2012-07-2400:00:00
Root
www.seebug.org
43
0.008 Low
EPSS
Percentile
79.8%
BUGTRAQ ID: 54612
CVE ID: CVE-2012-3365
PHP 是一种 HTML 内嵌式的语言,PHP与微软的ASP颇有几分相似,都是一种在服务器端执行的嵌入HTML文档的脚本语言,语言的风格有类似于C语言,现在被很多的网站编程人员广泛的运用。
PHP 5.3.15之前版本在SQLite扩展中存在错误,可被利用绕过"open_basedir"功能。
0
PHP 5.3.x
厂商补丁:
PHP
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:
Related
ptsecurity
ptsecurity
PT-2012-14: Security Restrictions Bypass in PHP
2013-04-02 00:00:00
freebsd
freebsd
php5-sqlite -- open_basedir bypass
2012-06-14 00:00:00
nessus
nessus
FreeBSD : php5-sqlite -- open_basedir bypass (ec255bd8-02c6-11e2-92d1-000d601460a4)
2012-09-20 00:00:00
PHP 5.3.x < 5.3.15 Multiple Vulnerabilities
2012-07-20 00:00:00
SuSE 10 Security Update : php5 (ZYPP Patch Number 8239)
2012-08-24 00:00:00
prion
prion
Design/Logic Flaw
2012-07-20 10:40:00
openvas
openvas
FreeBSD Ports: php5-sqlite
2012-09-19 00:00:00
PHP 'open_basedir' Secuirity Bypass Vulnerability - Windows
2013-03-01 00:00:00
FreeBSD Ports: php5-sqlite
2012-09-19 00:00:00
ubuntucve
ubuntucve
CVE-2012-3365
2012-07-20 00:00:00
cve
cve
CVE-2012-3365
2012-07-20 10:40:00
suse
suse
Security update for php5 (important)
2012-08-24 14:08:28
Security update for PHP5 (important)
2012-08-24 09:08:27
Security update for PHP5 (important)
2013-08-16 21:04:11
securityvulns
securityvulns
[ MDVSA-2012:108 ] php
2012-07-30 00:00:00
PHP security vulnerabilities
2012-07-30 00:00:00
f5
f5
K15903 : Multiple PHP vulnerabilities
2014-12-11 00:00:00
SOL15903 - Multiple PHP vulnerabilities
2014-12-11 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2012-09-24 00:00:00