Lucene search
Ubuntu.comUB:CVE-2004-1392HistoryDec 31, 2004 - 12:00 a.m.
CVE-2004-1392
2004-12-3100:00:00
ubuntu.com
ubuntu.com
9
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.009
Percentile
82.7%
PHP 4.0 with cURL functions allows remote attackers to bypass the
open_basedir setting and read arbitrary files via a file: URL argument to
the curl_init function.
Related
nvd
nvd
CVE-2004-1392
2004-12-31 05:00:00
cvelist
cvelist
CVE-2004-1392
2005-02-06 05:00:00
cve
cve
CVE-2004-1392
2005-02-06 05:00:00
nessus
nessus
CentOS 3 : PHP (CESA-2005:405)
2006-07-03 00:00:00
RHEL 4 : PHP (RHSA-2005:406)
2005-05-04 00:00:00
RHEL 3 : PHP (RHSA-2005:405)
2005-04-29 00:00:00
redhat
redhat
(RHSA-2005:406) PHP security update
2005-05-04 00:00:00
(RHSA-2005:405) PHP security update
2005-04-28 00:00:00
centos
centos
php security update
2005-04-28 22:58:33
php security update
2005-05-04 17:39:54
CVSS2
5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
EPSS
0.009
Percentile
82.7%
Related for UB:CVE-2004-1392