Lucene search
Redhat.comRH:CVE-2006-4481HistoryOct 30, 2015 - 10:07 a.m.
CVE-2006-4481
2015-10-3010:07:32
redhat.com
access.redhat.com
4
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.1
Confidence
Low
EPSS
0.13
Percentile
95.5%
The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log function is covered by CVE-2006-3011, and the imap_open function is covered by CVE-2006-1017.
Related
cvelist
cvelist
nvd
nvd
cve
cve
ubuntucve
ubuntucve
securityvulns
securityvulns
error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2
2006-06-27 00:00:00
seebug
seebug
PHP error_log()ๅฎๅ
จๆจกๅผ้ๅถ็ป่ฟๆผๆด
2007-12-26 00:00:00
prion
prion
Design/Logic Flaw
2006-03-07 00:02:00
redhatcve
redhatcve
CVE-2006-1017
2015-10-30 09:31:48
nessus
nessus
PHP 5.1.x < 5.1.5 Multiple Vulnerabilities
2011-11-18 00:00:00
PHP < 4.4.4 Multiple Vulnerabilities
2011-11-18 00:00:00
Mandrake Linux Security Advisory : php (MDKSA-2006:162)
2006-12-16 00:00:00
openvas
openvas
PHP 5.1.x < 5.1.5 Multiple Vulnerabilities
2020-08-17 00:00:00
PHP 5.1.x < 5.1.5 Multiple Vulnerabilities
2012-06-21 00:00:00
PHP < 4.4.4 Multiple Vulnerabilities
2020-08-17 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2006-09-07 00:00:00
PHP vulnerabilities
2006-07-19 00:00:00
freebsd
freebsd
php -- multiple vulnerabilities
2006-08-18 00:00:00
suse
suse
remote code execution in php4,php5
2006-09-21 10:05:51
CVSS2
9.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
7.1
Confidence
Low
EPSS
0.13
Percentile
95.5%
Related for RH:CVE-2006-4481