|
|
CVE Reference: CVE-2006-4481 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-4481 |
|
|
Description: The (1) file_exists and (2) imap_reopen functions in PHP before 5.1.5 do not check for the safe_mode and open_basedir settings, which allows local users to bypass the settings. NOTE: the error_log function is covered by CVE-2006-3011, and the imap_open function is covered by CVE-2006-1017. |
|
|
CVE Status: Candidate |
|
|
References: UBUNTU http://www.ubuntu.com/usn/usn-342-1 SUSE http://www.novell.com/linux/security/advisories/2006_52_php.html SAID Secunia Advisory: SA21546 Secunia Advisory: SA21768 Secunia Advisory: SA21842 Secunia Advisory: SA22039 MANDRIVA http://frontal2.mandriva.com/security/advisories?name=MDKSA-2006:162 CONFIRM http://www.php.net/release_5_1_5.php BID 19582 |
|
| Return to the previous page. |
