PHP 'session_save_path()' 'safe_mode' Restriction-Bypass Vulnerability

PHP 'session_save_path()' 'safe_mode' Restriction-Bypass Vulnerability

References:

Kolab Server 2.2.4 Final Release (Kolab)
PHP 5.2.12/5.3.1 session.save_path safe_mode and open_basedir bypass (Grzegorz Stachowiak)
PHP 5.2.13 Release Announcement (PHP)
PHP Homepage (PHP)
Revision 294272 (iliaa)
Revision 294272 (iliaa)
USN-989-1: PHP vulnerabilities (Ubuntu)

Privacy Statement
Copyright 2010, SecurityFocus