PHP Multiple Safe_Mode and Open_Basedir Restriction Bypass Vulnerabilities

PHP Multiple Safe_Mode and Open_Basedir Restriction Bypass Vulnerabilities

References:

ASA-2006-175 - php security update (RHSA-2006-0568) (Avaya)
ASA-2006-179 - php security update (RHSA-2006-0567) (Avaya)
PHP Homepage (PHP)
PHP NEWS (PHP)
RHSA-2006:0549-7 - php security update for Stronghold (Red Hat)
RHSA-2006:0567-7 - php security update (Red Hat)
RHSA-2006:0568-8 - php security update (Red Hat)
copy() Safe Mode Bypass PHP 4.4.2 and 5.1.2 (cxib@securityreason.com)
tempnam() open_basedir bypass PHP 4.4.2 and 5.1.2 (cxib@securityreason.com)

Privacy Statement
Copyright 2010, SecurityFocus