Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2665

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-2665
Last Modified 30 Oct 2012 10:58:13
Published 19 Jun 2008 09:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2665

Summary

Directory traversal vulnerability in the posix_access function in PHP 5.2.6 and earlier allows remote attackers to bypass safe_mode restrictions via a .. (dot dot) in an http URL, which results in the URL being canonicalized to a local filename after the safe_mode check has successfully run.

Vulnerable Systems

Application

  • Php 5.2.6


References

CERT - TA09-133A

XF - php-posixaccess-security-bypass(43196)

VUPEN - ADV-2009-1297

SECTRACK - 1020327

BID - 29797

BUGTRAQ - 20090302 rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0035

CONFIRM - http://support.apple.com/kb/HT3549

SREASON - 3941

SREASONRES - 20080617 PHP 5.2.6 posix_access() (posix ext) safe_mode bypass

SECUNIA - 35650

SECUNIA - 35074

HP - SSRT090192

HP - SSRT090085

APPLE - APPLE-SA-2009-05-12

GENTOO - GLSA-200811-05

SECUNIA - 32746

HP - HPSBUX02465

HP - HPSBUX02431

Related Patches

Apple 2009-05-12 Mac OS X 10.5.7 Combo Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Update

Apple 2009-05-12 Mac OS X 10.5.7 Update

Apple 2009-05-12 Mac OS X Server 10.5.7 Combo Update


Last Updated: 27 May 2016 10:49:46