Published: 13/06/2006 Updated: 30/10/2018

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:P/A:N

Buffer consumption vulnerability in the tempnam function in PHP 5.1.4 and 4.x prior to 4.4.3 allows local users to bypass restrictions and create PHP files with fixed names in other directories via a pathname argument longer than MAXPATHLEN, which prevents a unique string from being appended to the filename.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 4.0.4
php php 4.0.5
php php 4.2.3
php php 4.3.0
php php 4.3.1
php php 4.3.6
php php 4.3.7
php php 5.1.4
php php 4.0.2
php php 4.0.3
php php 4.2.1
php php 4.2.2
php php 4.3.4
php php 4.3.5
php php 4.4.2
php php 4.4.3
php php 4.1.0
php php 4.1.1
php php 4.3.10
php php 4.3.11
php php 4.3.8
php php 4.3.9
php php 4.0.0
php php 4.0.1
php php 4.1.2
php php 4.2.0
php php 4.3.2
php php 4.3.3
php php 4.4.0
php php 4.4.1

The phpinfo() PHP function did not properly sanitize long strings A remote attacker could use this to perform cross-site scripting attacks against sites that have publicly-available PHP scripts that call phpinfo() Please note that it is not recommended to publicly expose phpinfo() (CVE-2006-0996) ...

NVD-CWE-Other http://cvs.php.net/viewcvs.cgi/php-src/NEWS?view=markup&rev=1.1247.2.920.2.134 http://securitytracker.com/id?1016271 http://www.ubuntu.com/usn/usn-320-1 http://archives.neohapsis.com/archives/fulldisclosure/2006-06/0209.html http://secunia.com/advisories/21125 http://www.mandriva.com/security/advisories?name=MDKSA-2006:122 http://securityreason.com/securityalert/1069 https://exchange.xforce.ibmcloud.com/vulnerabilities/27049 http://www.securityfocus.com/archive/1/436785/100/0/threaded https://usn.ubuntu.com/320-1/https://nvd.nist.gov

CVE-2006-2660

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect