Zend Platform 2.2.3 and previous versions has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_mode and open_basedir are disabled; other settings require leverage for other vulnerabilities.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zend zend platform 2.2.1a |