Lucene search
Ubuntu.comUB:CVE-2007-4825HistorySep 12, 2007 - 12:00 a.m.
CVE-2007-4825
2007-09-1200:00:00
ubuntu.com
ubuntu.com
14
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.7%
Directory traversal vulnerability in PHP 5.2.4 and earlier allows attackers
to bypass open_basedir restrictions and possibly execute arbitrary code via
a … (dot dot) in the dl function.
Notes
| Author | Note |
|---|---|
| kees | open_basedir not supported. |
Related
prion
prion
Directory traversal
2007-09-12 01:17:00
redhatcve
redhatcve
CVE-2007-4825
2015-10-30 09:41:35
cve
cve
CVE-2007-4825
2007-09-12 01:17:00
nessus
nessus
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4909)
2008-01-27 00:00:00
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-4810)
2008-01-08 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 4808)
2007-12-24 00:00:00
openvas
openvas
SLES9: Security update for PHP4
2009-10-10 00:00:00
PHP < 5.2.5 Multiple Vulnerabilities
2012-06-21 00:00:00
PHP < 5.2.5 Multiple Vulnerabilities
2020-08-17 00:00:00
suse
suse
remote code execution in php4, php5
2008-01-29 14:18:48
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.02 Low
EPSS
Percentile
88.7%
Related for UB:CVE-2007-4825