PHP .Htaccess Safe_Mode and Open_Basedir Restriction-Bypass Vulnerability

Threat level definition

PHP .Htaccess Safe_Mode and Open_Basedir Restriction-Bypass Vulnerability

Solution:
The vendor has released PHP 5.2.4 to address this issue. Please see the referenced advisories for more information.

Apple Mac OS X 10.4.11

Apple SecUpd2008-002PPC.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=18157&cat= 57&platform=osx&method=sa/SecUpd2008-002PPC.dmg

Apple SecUpd2008-002Univ.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=18157&cat= 57&platform=osx&method=sa/SecUpd2008-002Univ.dmg

Apple Mac OS X Server 10.4.11

Apple SecUpdSrvr2008-002PPC.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=18157&cat= 57&platform=osx&method=sa/SecUpdSrvr2008-002PPC.dmg

Apple SecUpdSrvr2008-002Univ.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=18157&cat= 57&platform=osx&method=sa/SecUpdSrvr2008-002Univ.dmg

Apple Mac OS X Server 10.5.2

Apple SecUpdSrvr2008-002.dmg
http://wsidecar.apple.com/cgi-bin/nph-reg3rdpty2.pl/product=18157&cat= 57&platform=osx&method=sa/SecUpdSrvr2008-002.dmg

PHP PHP 5.2.3

PHP PHP 5.2.4 Complete Source Code
http://www.php.net/get/php-5.2.4.tar.gz/from/a/mirror

Privacy Statement
Copyright 2007, SecurityFocus