|
|
PHP cURL 'safe mode' Security Bypass Vulnerability
|
Bugtraq ID:
|
27413
|
|
Class:
|
Input Validation Error
|
|
CVE:
|
CVE-2007-4850
|
|
Remote:
|
Yes
|
|
Local:
|
No
|
|
Published:
|
Jan 23 2008 12:00AM
|
|
Updated:
|
Aug 12 2008 10:16AM
|
|
Credit:
|
Maksymilian Arciemowicz
|
|
Vulnerable:
|
Ubuntu Ubuntu Linux 8.04 LTS sparc
Ubuntu Ubuntu Linux 8.04 LTS powerpc
Ubuntu Ubuntu Linux 8.04 LTS lpia
Ubuntu Ubuntu Linux 8.04 LTS i386
Ubuntu Ubuntu Linux 8.04 LTS amd64
Ubuntu Ubuntu Linux 7.10 sparc
Ubuntu Ubuntu Linux 7.10 powerpc
Ubuntu Ubuntu Linux 7.10 lpia
Ubuntu Ubuntu Linux 7.10 i386
Ubuntu Ubuntu Linux 7.10 amd64
Ubuntu Ubuntu Linux 7.04 sparc
Ubuntu Ubuntu Linux 7.04 powerpc
Ubuntu Ubuntu Linux 7.04 i386
Ubuntu Ubuntu Linux 7.04 amd64
Ubuntu Ubuntu Linux 6.06 LTS sparc
Ubuntu Ubuntu Linux 6.06 LTS powerpc
Ubuntu Ubuntu Linux 6.06 LTS i386
Ubuntu Ubuntu Linux 6.06 LTS amd64
rPath rPath Linux 1
PHP PHP 5.2.5
PHP PHP 5.2.4
PHP PHP 4.4.8
PHP PHP 4.4.7
-
Slackware Linux 10.2
-
Slackware Linux 11.0
-
Slackware Linux -current
PHP PHP 4.4.6
PHP PHP 4.4.5
PHP PHP 4.4.4
Apple Mac OS X Server 10.5.4
Apple Mac OS X 10.5.4
|
|
|
|
Not Vulnerable:
|
PHP PHP 5.2.6
PHP PHP 4.4.9
|
|
|
