CVE-2004-1064

Sažetak

The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the realpath function, which could allow attackers to bypass safe mode. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.

Reference

http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000915
http://www.gentoo.org/security/en/glsa/glsa-200412-14.xml
http://www.hardened-php.net/advisories/012004.txt
http://www.mandriva.com/security/advisories?name=MDKSA-2004:151
http://www.mandriva.com/security/advisories?name=MDKSA-2005:072
http://www.php.net/release_4_3_10.php
http://www.securityfocus.com/advisories/9028
http://www.securityfocus.com/archive/1/384545
http://www.securityfocus.com/bid/11964
https://exchange.xforce.ibmcloud.com/vulnerabilities/18512
https://www.ubuntu.com/usn/usn-99-1/
https://www.ubuntu.com/usn/usn-99-2/

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

08-12-2020 - 18:56

Objavljeno

10-01-2005 - 05:00