CVE-2005-3392 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2005-3392
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2005-3392

Description: Unspecified vulnerability in PHP before 4.4.1, when using the virtual function on Apache 2, allows remote attackers to bypass safe_mode and open_basedir directives.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/22924 UBUNTU http://www.ubuntulinux.org/usn/usn-232-1/document_view SUSE http://www.securityfocus.com/archive/1/archive/1/419504/100/0/threaded SREASON http://securityreason.com/securityalert/525 SAID Secunia Advisory: SA17371 Secunia Advisory: SA22691 Secunia Advisory: SA17510 Secunia Advisory: SA18054 Secunia Advisory: SA18198 Secunia Advisory: SA19064 OSVDB 20897 HP http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522 GENTOO http://www.gentoo.org/security/en/glsa/glsa-200511-08.xml CONFIRM http://docs.info.apple.com/article.html?artnum=303382 http://www.php.net/release_4_4_1.php CERT http://www.us-cert.gov/cas/techalerts/TA06-062A.html BID 16907 15413 APPLE http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html

Return to the previous page.