Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61505
HistoryFeb 21, 2014 - 12:00 a.m.

PHP libxml RSHUTDOWN安全限制绕过漏洞(CVE-2012-1171)

2014-02-2100:00:00
Root
www.seebug.org
122

0.003 Low

EPSS

Percentile

69.1%

JSON

BUGTRAQ ID: 65673
CVE(CAN) ID: CVE-2012-1171

PHP是一种HTML内嵌式的语言。

PHP 5.x版本内的libxml RSHUTDOWN函数可使远程攻击者在用自定义流封装器时调用stream_close方法,绕过open_basedir保护机制,读取敏感文件。
0
PHP PHP 5.5.x
厂商补丁:

PHP

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.php.net/downloads.php
http://git.php.net/?p=php-src.git;a=commitdiff;h=8f4a5373bb71590352fd934028d6dde5bc18530b

Related

cve 1
ubuntucve 1
cvelist 1
nvd 1
openvas 1
f5 2
nessus 1
prion 1
rosalinux 1
cve
cve
CVE-2012-1171
2014-02-15 14:57:07
ubuntucve
ubuntucve
CVE-2012-1171
2014-02-15 00:00:00
cvelist
cvelist
CVE-2012-1171
2014-02-15 11:00:00
nvd
nvd
CVE-2012-1171
2014-02-15 14:57:07
openvas
openvas
PHP 'open_basedir' Security Bypass Vulnerability
2014-02-19 00:00:00
f5
f5
SOL15635 - PHP 5.x vulnerability - CVE-2012-1171
2014-09-29 00:00:00
K15635 : PHP 5.x vulnerability - CVE-2012-1171
2014-09-29 00:00:00
nessus
nessus
PHP PHP_RSHUTDOWN_FUNCTION Security Bypass
2014-04-01 00:00:00
prion
prion
Design/Logic Flaw
2014-02-15 14:57:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45

0.003 Low

EPSS

Percentile

69.1%

JSON
Related for SSV:61505
cve1ubuntucve1cvelist1nvd1openvas1f52nessus1prion1rosalinux1