Lucene search
Ubuntu.comUB:CVE-2012-1171HistoryFeb 15, 2014 - 12:00 a.m.
CVE-2012-1171
2014-02-1500:00:00
ubuntu.com
ubuntu.com
6
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.0%
The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass
the open_basedir protection mechanism and read arbitrary files via vectors
involving a stream_close method call during use of a custom stream wrapper.
Notes
| Author | Note |
|---|---|
| jdstrand | safe_mode - open_basedir bypass, ignoring |
Related
cve
cve
CVE-2012-1171
2014-02-15 14:57:07
cvelist
cvelist
CVE-2012-1171
2014-02-15 11:00:00
nvd
nvd
CVE-2012-1171
2014-02-15 14:57:07
openvas
openvas
PHP 'open_basedir' Security Bypass Vulnerability
2014-02-19 00:00:00
prion
prion
Design/Logic Flaw
2014-02-15 14:57:00
f5
f5
SOL15635 - PHP 5.x vulnerability - CVE-2012-1171
2014-09-29 00:00:00
K15635 : PHP 5.x vulnerability - CVE-2012-1171
2014-09-29 00:00:00
seebug
seebug
PHP libxml RSHUTDOWN安全限制绕过漏洞(CVE-2012-1171)
2014-02-21 00:00:00
nessus
nessus
PHP PHP_RSHUTDOWN_FUNCTION Security Bypass
2014-04-01 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
69.0%
Related for UB:CVE-2012-1171