Published: 31/08/2006 Updated: 30/10/2018

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 641

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

The (1) file_exists and (2) imap_reopen functions in PHP prior to 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log function is covered by CVE-2006-3011, and the imap_open function is covered by CVE-2006-1017.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 5.1.1
php php 5.1.2
php php 5.1.4
php php 5.1.0

The sscanf() function did not properly check array boundaries In applications which use sscanf() with argument swapping, a remote attacker could potentially exploit this to crash the affected web application or even execute arbitrary code with the application’s privileges (CVE-2006-4020) ...

NVD-CWE-Other http://www.php.net/release_5_1_5.php http://secunia.com/advisories/21546 http://www.ubuntu.com/usn/usn-342-1 http://secunia.com/advisories/21768 http://secunia.com/advisories/21842 http://www.novell.com/linux/security/advisories/2006_52_php.html http://www.securityfocus.com/bid/19582 http://secunia.com/advisories/22039 http://www.mandriva.com/security/advisories?name=MDKSA-2006:162 http://www.vupen.com/english/advisories/2006/3318 https://usn.ubuntu.com/342-1/https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4481

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect