Lucene search
Ubuntu.comUB:CVE-2007-5900HistoryNov 20, 2007 - 12:00 a.m.
CVE-2007-5900
2007-11-2000:00:00
ubuntu.com
ubuntu.com
8
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
14.3%
PHP before 5.2.5 allows local users to bypass protection mechanisms
configured through php_admin_value or php_admin_flag in httpd.conf by using
ini_set to modify arbitrary configuration variables, a different issue than
CVE-2006-4625.
Bugs
- <https://bugs.launchpad.net/ubuntu/+source/php5/+bug/228095>
- <http://bugs.php.net/bug.php?id=41561>
Notes
| Author | Note |
|---|---|
| jdstrand | requires malicious script |
Related
prion
prion
Design/Logic Flaw
2007-11-20 18:46:00
cve
cve
CVE-2007-5900
2007-11-20 18:46:00
CVE-2006-4625
2006-09-12 16:07:00
securityvulns
securityvulns
PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore()
2006-09-11 00:00:00
rPSA-2007-0242-1 php5 php5-cgi php5-mysql php5-pear php5-pgsql php5-soap php5-xsl
2007-11-20 00:00:00
PHP multiple Denial of Service conditions
2007-11-20 00:00:00
openvas
openvas
SLES9: Security update for PHP
2009-10-10 00:00:00
SLES9: Security update for PHP
2009-10-10 00:00:00
HP-UX Update for Apache With PHP HPSBUX02332
2009-05-05 00:00:00
ubuntucve
ubuntucve
CVE-2006-4625
2006-09-12 00:00:00
packetstorm
packetstorm
phpBypass.txt
2006-09-13 00:00:00
nessus
nessus
openSUSE 10 Security Update : apache2-mod_php5 (apache2-mod_php5-2153)
2007-10-17 00:00:00
SUSE-SA:2006:059: php4,php5
2007-02-18 00:00:00
SuSE 10 Security Update : PHP (ZYPP Patch Number 2152)
2007-12-13 00:00:00
suse
suse
remote code execution in php4,php5
2006-10-09 16:00:37
ubuntu
ubuntu
PHP vulnerabilities
2006-10-11 00:00:00
PHP vulnerabilities
2009-02-12 00:00:00
6.9 Medium
CVSS2
Access Vector
LOCAL
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:M/Au:N/C:C/I:C/A:C
0.0004 Low
EPSS
Percentile
14.3%
Related for UB:CVE-2007-5900