4.6 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:L/AC:L/Au:N/C:P/I:P/A:P
0.0004 Low
EPSS
Percentile
8.9%
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir
restrictions via a malicious path and a null byte before a “;” in a
session_save_path argument, followed by an allowed path, which causes a
parsing inconsistency in which PHP validates the allowed path but sets
session.save_path to the malicious path.