Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1064

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-1064
Last Modified 10 Sep 2008 03:28:55
Published 10 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1064

Summary

The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the realpath function, which could allow attackers to bypass safe mode. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.

Vulnerable Systems


References

XF - php-realpath-safemode-bypass(18512)

BID - 11964

BUGTRAQ - 20041215 Advisory 01/2004: Multiple vulnerabilities in PHP 4/5

CONFIRM - http://www.php.net/release_4_3_10.php

MISC - http://www.hardened-php.net/advisories/012004.txt

GENTOO - GLSA-200412-14

UBUNTU - USN-99-2

UBUNTU - USN-99-1

CONECTIVA - CLA-2005:915

HP - HPSBMA01212

MANDRAKE - MDKSA-2005:072

MANDRAKE - MDKSA-2004:151


Last Updated: 27 May 2016 10:38:52