|
|
PHP 'chdir()' and 'ftok()' 'safe_mode' Multiple Security Bypass Vulnerabilities
|
Bugtraq ID:
|
29796
|
|
Class:
|
Access Validation Error
|
|
CVE:
|
CVE-2008-2666
|
|
Remote:
|
Yes
|
|
Local:
|
Yes
|
|
Published:
|
Jun 18 2008 12:00AM
|
|
Updated:
|
Oct 22 2009 11:28PM
|
|
Credit:
|
Maksymilian Arciemowicz
|
|
Vulnerable:
|
Slackware Linux 12.1
Slackware Linux 12.0
Slackware Linux -current
rPath rPath Linux 2
rPath rPath Linux 1
rPath Appliance Platform Linux Service 2
rPath Appliance Platform Linux Service 1
PHP PHP 5.2.6
PHP PHP 5.2.5
PHP PHP 5.2.4
PHP PHP 5.2.3
PHP PHP 5.2.2
PHP PHP 5.2.1
+
Ubuntu Ubuntu Linux 7.04 sparc
+
Ubuntu Ubuntu Linux 7.04 powerpc
+
Ubuntu Ubuntu Linux 7.04 i386
+
Ubuntu Ubuntu Linux 7.04 amd64
PHP PHP 5.1.6
+
Ubuntu Ubuntu Linux 6.10 sparc
+
Ubuntu Ubuntu Linux 6.10 powerpc
+
Ubuntu Ubuntu Linux 6.10 i386
+
Ubuntu Ubuntu Linux 6.10 amd64
PHP PHP 5.1.5
PHP PHP 5.1.4
PHP PHP 5.1.3
PHP PHP 5.1.3
PHP PHP 5.1.2
+
Ubuntu Ubuntu Linux 6.06 LTS sparc
+
Ubuntu Ubuntu Linux 6.06 LTS powerpc
+
Ubuntu Ubuntu Linux 6.06 LTS i386
+
Ubuntu Ubuntu Linux 6.06 LTS amd64
PHP PHP 5.1.1
PHP PHP 5.1
PHP PHP 5.0.5
PHP PHP 5.0.4
PHP PHP 5.0.3
+
Trustix Secure Linux 2.2
PHP PHP 5.0.2
PHP PHP 5.0.1
PHP PHP 5.0 candidate 3
PHP PHP 5.0 candidate 2
PHP PHP 5.0 candidate 1
PHP PHP 5.0 .0
PHP PHP 5.2
+
Debian Linux 4.0 sparc
+
Debian Linux 4.0 s/390
+
Debian Linux 4.0 powerpc
+
Debian Linux 4.0 mipsel
+
Debian Linux 4.0 mips
+
Debian Linux 4.0 m68k
+
Debian Linux 4.0 ia-64
+
Debian Linux 4.0 ia-32
+
Debian Linux 4.0 hppa
+
Debian Linux 4.0 arm
+
Debian Linux 4.0 amd64
+
Debian Linux 4.0 alpha
+
Debian Linux 4.0
HP HP-UX B.11.31
HP HP-UX B.11.23
HP HP-UX B.11.11
Gentoo Linux
Apple Mac OS X Server 10.5.6
Apple Mac OS X Server 10.5.5
Apple Mac OS X Server 10.5.4
Apple Mac OS X Server 10.5.3
Apple Mac OS X Server 10.5.2
Apple Mac OS X Server 10.5.1
Apple Mac OS X Server 10.5
Apple Mac OS X 10.5.6
Apple Mac OS X 10.5.5
Apple Mac OS X 10.5.4
Apple Mac OS X 10.5.3
Apple Mac OS X 10.5.2
Apple Mac OS X 10.5.1
Apple Mac OS X 10.5
|
|
|
|
Not Vulnerable:
|
PHP PHP 5.2.8
Apple Mac OS X Server 10.5.7
Apple Mac OS X 10.5.7
|
|
|
