Security Advisory SA8213 - OpenLinux updates for php

Overview

Advisories

Research

Forums

Create Profile

Our Commitment

Database

Advisories by Product

Advisories by Vendor

Terminology

Report Vulnerability

Insecure Library Loading

Secunia Advisory SA8213

OpenLinux updates for php

Secunia Advisory

SA8213

Release Date

2003-03-05

Popularity

6,386 views

Comments

0 comments

Criticality level

Moderately critical

Impact

System access

Where

From remote

Authentication level

This information is available to Secunia VIM customers

Report reliability

This information is available to Secunia VIM customers

Solution Status

Vendor Patch

Systems affected

This information is available to Secunia VIM customers

Approve distribution

This information is available to Secunia VIM customers

Operating System

OpenLinux Server 3.x

OpenLinux Workstation 3.x

Secunia CVSS Score

This information is available to Secunia VIM Customers

CVE Reference(s)

CVE-2002-0986 CVSS score available to Secunia VIM customers
CVE-2002-0985 CVSS score available to Secunia VIM customers

Description

SCO has issued fixes to the older safe mode php issue, allowing attackers to pass shell meta characters or sendmail command line options.

This could potentially allow attackers to run arbitrary commands with privileges of the web server user.

Solution
OpenLinux 3.1.1 Server
Further details available to Secunia VIM customers

Deep Links
Links available to Secunia VIM customers

Do you have additional information related to this advisory?

Please provide information about patches, mitigating factors, new versions, exploits, faulty patches, links, and other relevant data by posting comments to this Advisory. You can also send this information to vuln@secunia.com

Subject: OpenLinux updates for php

No posts yet

Secunia Advisory SA8213

OpenLinux updates for php

Do you have additional information related to this advisory?

You must be logged in to post a comment.

Secunia Customer Login

Not a customer already?