• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

PHP SafeMode Arbitrary File Execution Vulnerability

Solution:
Red Hat has re-released packages fixing dependency issues with the PHP package. This information is given in detail in Red Hat Security Advisory RHSA-2002:102-33, and is available at http://rhn.redhat.com/errata/RHSA-2002-102.html.

HP has released an alert for HP Secure OS, advising users to apply fixes detailed in Red Hat Security Advisory RHSA-2002:102-33. See referenced advisory for more details, and visit above URL for fixes.

Sun as released fixes to address this issue in a variety of devices which use PHP. Users are advised to upgrade as soon as possible.

FreeBSD has released upgrades. Users are advised to upgrade their Ports
collection and reinstall the affected port.

Conectiva has released an advisory (CLA-2002:545) which contains fixes for this issue. Please see the attached advisory for further details on obtaining fixes.

Gentoo Linux has released an advisory. Users of dev-php/php-4.2.2-r1 and/or dev-php/mod_php-4.2.2-r1 and earlier are advised to update systems by issuing the following commands:

emerge rsync
emerge php
and/or
emerge mod_php
emerge clean

Fixes available:


Sun Cobalt RaQ 550

• Sun RaQ550-All-Security-0.0.1-15959.pkg
  http://ftp.cobalt.sun.com/pub/packages/raq550/all/RaQ550-All-Security- 0.0.1-15959.pkg

Sun Cobalt Qube 3

• Sun Qube3-All-Security-4.0.1-15959.pkg
  http://ftp.cobalt.sun.com/pub/packages/qube3/ml/Qube3-All-Security-4.0 .1-15959.pkg

Sun Cobalt RaQ 4

• Sun RaQ4-All-Security-2.0.1-15959.pkg
  http://ftp.cobalt.sun.com/pub/packages/raq4/eng/RaQ4-All-Security-2.0. 1-15959.pkg

Sun Cobalt RaQ XTR

• Sun RaQXTR-All-Security-1.0.1-15959.pkg
  http://ftp.cobalt.sun.com/pub/packages/raqxtr/eng/RaQXTR-All-Security- 1.0.1-15959.pkg

PHP PHP 4.0.3

• Debian php4-cgi_4.0.3pl1-0potato4_alpha.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.0.3pl1- 0potato4_alpha.deb


• Debian php4-cgi_4.0.3pl1-0potato4_i386.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.0.3pl1- 0potato4_i386.deb


• Debian php4-cgi_4.0.3pl1-0potato4_m68k.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.0.3pl1- 0potato4_m68k.deb


• Debian php4-cgi_4.0.3pl1-0potato4_powerpc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.0.3pl1- 0potato4_powerpc.deb


• Debian php4-cgi_4.0.3pl1-0potato4_sparc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.0.3pl1- 0potato4_sparc.deb


• Debian php4_4.0.3pl1-0potato4_alpha.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.0.3pl1-0pot ato4_alpha.deb


• Debian php4_4.0.3pl1-0potato4_i386.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.0.3pl1-0pot ato4_i386.deb


• Debian php4_4.0.3pl1-0potato4_m68k.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.0.3pl1-0pot ato4_m68k.deb


• Debian php4_4.0.3pl1-0potato4_powerpc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.0.3pl1-0pot ato4_powerpc.deb


• Debian php4_4.0.3pl1-0potato4_sparc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.0.3pl1-0pot ato4_sparc.deb


• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.4

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.5

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.6

• Mandrake php-4.0.6-6.1mdk.i586.rpm
  Mandrake Linux 8.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.1mdk.ia64.rpm
  Mandrake Linux 8.1/ia64.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.2mdk.i586.rpm
  Mandrake Linux 8.0.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.2mdk.ppc.rpm
  Mandrake Linux 8.0/ppc.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.3mdk.i586.rpm
  Linux-Mandrake 7.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.4mdk.i586.rpm
  Linux-Mandrake 7.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-4.0.6-6.4mdk.i586.rpm
  Mandrake Corporate Server 1.0.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.1mdk.i586.rpm
  Mandrake Linux 8.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.1mdk.ia64.rpm
  Mandrake Linux 8.1/ia64.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.2mdk.i586.rpm
  Mandrake Linux 8.0.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.2mdk.ppc.rpm
  Mandrake Linux 8.0/ppc.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.3mdk.i586.rpm
  Linux-Mandrake 7.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.4mdk.i586.rpm
  Linux-Mandrake 7.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-common-4.0.6-6.4mdk.i586.rpm
  Mandrake Corporate Server 1.0.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.1mdk.i586.rpm
  Mandrake Linux 8.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.1mdk.ia64.rpm
  Mandrake Linux 8.1/ia64.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.2mdk.i586.rpm
  Mandrake Linux 8.0.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.2mdk.ppc.rpm
  Mandrake Linux 8.0/ppc.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.3mdk.i586.rpm
  Linux-Mandrake 7.2.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.4mdk.i586.rpm
  Linux-Mandrake 7.1.
  http://www.mandrakesecure.net/en/ftp.php


• Mandrake php-devel-4.0.6-6.4mdk.i586.rpm
  Mandrake Corporate Server 1.0.1.
  http://www.mandrakesecure.net/en/ftp.php


• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.7 RC2

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.7 RC1

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.7 RC3

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.0.7

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.1 .0

• EnGarde Secure Linux mod_php-4.2.3-1.0.20.i386.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i386/mod_php-4.2 .3-1.0.20.i386.rpm


• EnGarde Secure Linux mod_php-4.2.3-1.0.20.i686.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i686/mod_php-4.2 .3-1.0.20.i686.rpm


• EnGarde Secure Linux php-4.2.3-1.0.20.i386.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i386/php-4.2.3-1 .0.20.i386.rpm


• EnGarde Secure Linux php-4.2.3-1.0.20.i686.rpm
  ftp://ftp.engardelinux.org/pub/engarde/stable/updates/i686/php-4.2.3-1 .0.20.i686.rpm


• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.1.1

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.1.2

• Debian caudium-php4_4.1.2-5_alpha.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_alpha.deb


• Debian caudium-php4_4.1.2-5_arm.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_arm.deb


• Debian caudium-php4_4.1.2-5_hppa.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_hppa.deb


• Debian caudium-php4_4.1.2-5_i386.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_i386.deb


• Debian caudium-php4_4.1.2-5_ia64.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_ia64.deb


• Debian caudium-php4_4.1.2-5_m68k.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_m68k.deb


• Debian caudium-php4_4.1.2-5_mips.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_mips.deb


• Debian caudium-php4_4.1.2-5_mipsel.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_mipsel.deb


• Debian caudium-php4_4.1.2-5_powerpc.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_powerpc.deb


• Debian caudium-php4_4.1.2-5_s390.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_s390.deb


• Debian caudium-php4_4.1.2-5_sparc.deb
  http://security.debian.org/pool/updates/main/p/php4/caudium-php4_4.1.2 -5_sparc.deb


• Debian php4-cgi_4.1.2-5_alpha.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_a lpha.deb


• Debian php4-cgi_4.1.2-5_arm.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_a rm.deb


• Debian php4-cgi_4.1.2-5_hppa.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_h ppa.deb


• Debian php4-cgi_4.1.2-5_i386.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_i 386.deb


• Debian php4-cgi_4.1.2-5_ia64.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_i a64.deb


• Debian php4-cgi_4.1.2-5_m68k.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_m 68k.deb


• Debian php4-cgi_4.1.2-5_mips.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_m ips.deb


• Debian php4-cgi_4.1.2-5_mipsel.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_m ipsel.deb


• Debian php4-cgi_4.1.2-5_powerpc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_p owerpc.deb


• Debian php4-cgi_4.1.2-5_s390.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_s 390.deb


• Debian php4-cgi_4.1.2-5_sparc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4-cgi_4.1.2-5_s parc.deb


• Debian php4_4.1.2-5_alpha.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_alpha .deb


• Debian php4_4.1.2-5_arm.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_arm.d eb


• Debian php4_4.1.2-5_hppa.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_hppa. deb


• Debian php4_4.1.2-5_i386.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_i386. deb


• Debian php4_4.1.2-5_ia64.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_ia64. deb


• Debian php4_4.1.2-5_m68k.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_m68k. deb


• Debian php4_4.1.2-5_mips.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_mips. deb


• Debian php4_4.1.2-5_mipsel.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_mipse l.deb


• Debian php4_4.1.2-5_powerpc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_power pc.deb


• Debian php4_4.1.2-5_s390.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_s390. deb


• Debian php4_4.1.2-5_sparc.deb
  http://security.debian.org/pool/updates/main/p/php4/php4_4.1.2-5_sparc .deb


• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.2 .0

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

PHP PHP 4.2.1

• PHP PHP 4.2.2
  http://www.php.net/downloads.php

Sun Linux 5.0

• Sun Sun_Linux_5.0.3_update1.tar.bz2
  ftp://ftp.cobalt.sun.com/pub/products/sunlinux/5.0/en/updates/i386/upd ate_5_0_3/Sun_Linux_5.0.3_update1.tar.bz2