PHP cURL Encoded NULL Character Safe_Mode Restriction Bypass Vulnerability

PHP cURL is prone to a safe_mode restriction-bypass vulnerability. Successful exploitation could allow an attacker to access sensitive information.

This issue is reported to affect PHP versions 4.4.2 and 5.1.4; other versions may also be vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus