Lucene search
Ubuntu.comUB:CVE-2007-4596HistoryAug 30, 2007 - 12:00 a.m.
CVE-2007-4596
2007-08-3000:00:00
ubuntu.com
ubuntu.com
15
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.003
Percentile
68.3%
The perl extension in PHP does not follow safe_mode restrictions, which
allows context-dependent attackers to execute arbitrary code via the Perl
eval function. NOTE: this might only be a vulnerability in limited
environments.
Notes
| Author | Note |
|---|---|
| kees | safe_mode not supported |
Related
osv
osv
CGA-hjj9-68qc-mm2p
2024-06-06 12:27:46
CGA-pgpr-rvpc-pj98
2024-06-06 12:26:14
CGA-jcwm-pq6f-rxg4
2024-06-06 12:28:09
exploitdb
exploitdb
PHP 'Perl' Extension - 'Safe_mode' Bypass
2007-08-25 00:00:00
cve
cve
CVE-2007-4596
2007-08-30 18:17:00
cvelist
cvelist
CVE-2007-4596
2007-08-30 17:00:00
nvd
nvd
CVE-2007-4596
2007-08-30 18:17:00
prion
prion
Code injection
2007-08-30 18:17:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS
0.003
Percentile
68.3%
Related for UB:CVE-2007-4596