|
|
CVE Reference: CVE-2007-1370 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2007-1370 |
|
|
Description: Zend Platform 2.2.3 and earlier has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_mode and open_basedir are disabled; other settings require leverage for other vulnerabilities. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/32825 SAID Secunia Advisory: SA24501 OSVDB 32772 MISC http://www.php-security.org/MOPB/BONUS-06-2007.html CONFIRM http://www.zend.com/products/zend_platform/security_vulnerabilities BID 22801 |
|
| Return to the previous page. |
