|
|
PHP Open_BaseDir Security Restriction Bypass Vulnerability
|
Bugtraq ID:
|
14957
|
|
Class:
|
Design Error
|
|
CVE:
|
CAN-2005-3054
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Sep 27 2005 12:00AM
|
|
Updated:
|
Mar 15 2006 01:45PM
|
|
Credit:
|
thorben <thorben@gawab.com> is credited with the discovery of this vulnerability.
|
|
Vulnerable:
|
Ubuntu Ubuntu Linux 5.0 4 powerpc
Ubuntu Ubuntu Linux 5.0 4 i386
Ubuntu Ubuntu Linux 5.0 4 amd64
Ubuntu Ubuntu Linux 4.1 ppc
Ubuntu Ubuntu Linux 4.1 ia64
Ubuntu Ubuntu Linux 4.1 ia32
Trustix Secure Linux 3.0
Trustix Secure Linux 2.2
Trustix Secure Enterprise Linux 2.0
Todd Miller Sudo 1.6.8 p2
+
Trustix Secure Linux 2.2
PHP PHP 5.0.5
PHP PHP 5.0 .0
PHP PHP 4.4 .0
PHP PHP 4.3.10
+
Gentoo Linux
+
RedHat Fedora Core3
+
Trustix Secure Enterprise Linux 2.0
+
Trustix Secure Linux 2.2
+
Trustix Secure Linux 2.1
+
Trustix Secure Linux 2.0
+
Trustix Secure Linux 1.5
PHP PHP 4.3.8
+
MandrakeSoft Linux Mandrake 10.1 x86_64
+
MandrakeSoft Linux Mandrake 10.1
+
S.u.S.E. Linux Personal 9.2
+
Turbolinux Turbolinux Server 10.0
+
Ubuntu Ubuntu Linux 4.1 ppc
+
Ubuntu Ubuntu Linux 4.1 ia64
+
Ubuntu Ubuntu Linux 4.1 ia32
MandrakeSoft Multi Network Firewall 2.0
MandrakeSoft Linux Mandrake 2006.0 x86_64
MandrakeSoft Linux Mandrake 2006.0
MandrakeSoft Linux Mandrake 10.2 x86_64
MandrakeSoft Linux Mandrake 10.2
MandrakeSoft Linux Mandrake 10.1 x86_64
MandrakeSoft Linux Mandrake 10.1
MandrakeSoft Corporate Server 3.0 x86_64
MandrakeSoft Corporate Server 3.0
MandrakeSoft Corporate Server 2.1 x86_64
MandrakeSoft Corporate Server 2.1
Gentoo Linux
|
|
|
|
Not Vulnerable:
|
PHP PHP 5.1
PHP PHP 4.4.1
|
|
|
