Published: 26/09/2005 Updated: 03/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:P/I:N/A:N

fopen_wrappers.c in PHP 4.4.0, and possibly other versions, does not properly restrict access to other directories when the open_basedir directive includes a trailing slash, which allows PHP scripts in one directory to access files in other directories whose names are substrings of the original directory.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 4.4.0

A bug has been found in the handling of the open_basedir directive handling Contrary to the specification, the value of open_basedir was handled as a prefix instead of a proper directory name even if it was terminated by a slash (‘/’) For example, this allowed PHP scripts to access the directory /home/user10 when open_basedir was configured t ...

NVD-CWE-Other http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323585 http://www.php.net/release_4_4_1.php http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html http://www.securityfocus.com/bid/14957 http://secunia.com/advisories/17371 http://www.gentoo.org/security/en/glsa/glsa-200511-08.xml http://secunia.com/advisories/17229 http://secunia.com/advisories/17510 http://secunia.com/advisories/17557 http://www.mandriva.com/security/advisories?name=MDKSA-2005:213 http://www.vupen.com/english/advisories/2005/1862 http://www.vupen.com/english/advisories/2005/2254 https://usn.ubuntu.com/207-1/https://usn.ubuntu.com/207-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-3054

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect