Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0959

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2004-0959
Last Modified 11 Sep 2013 12:30:40
Published 03 Nov 2004 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0959

Summary

rfc1867.c in PHP before 5.0.2 allows local users to upload files to arbitrary locations via a PHP script with a certain MIME header that causes the "$_FILES" array to be modified.

Vulnerable Systems

Application

  • Php 5.0.2


References

XF - php-mime-array-execute-code(17392)

REDHAT - RHSA-2004:687

FEDORA - FLSA:2344

SECTRACK - 1011307

SECUNIA - 12560

VULNWATCH - 20040915 Php Vulnerability N. 2


Last Updated: 27 May 2016 10:38:49