Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5625

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-5625
Last Modified 31 Oct 2009 02:10:10
Published 17 Dec 2008 12:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5625

Summary

PHP 5 before 5.2.7 does not enforce the error_log safe_mode restrictions when safe_mode is enabled through a php_admin_flag setting in httpd.conf, which allows context-dependent attackers to write to arbitrary files by placing a "php_value error_log" entry in a .htaccess file.

Vulnerable Systems

Application

  • Php 5.0.0

  • Php 5.0.1

  • Php 5.0.2

  • Php 5.0.3

  • Php 5.0.4

  • Php 5.0.5

  • Php 5.1.0

  • Php 5.1.1

  • Php 5.1.2

  • Php 5.1.3

  • Php 5.1.4

  • Php 5.1.5

  • Php 5.1.6

  • Php 5.2.0

  • Php 5.2.1

  • Php 5.2.2

  • Php 5.2.3

  • Php 5.2.4

  • Php 5.2.5

  • Php 5.2.6


References

XF - php-error-safemode-bypass(47314)

BID - 32383

BUGTRAQ - 20090302 rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl

CONFIRM - http://www.php.net/ChangeLog-5.php#5.2.7

MILW0RM - 7171

MANDRIVA - MDVSA-2009:045

CONFIRM - http://wiki.rpath.com/Advisories:rPSA-2009-0035

SREASONRES - 20081120 PHP 5.2.6 (error_log) safe_mode bypass

SECUNIA - 35650

OSVDB - 52205

HP - SSRT090192

HP - HPSBUX02431

BUGTRAQ - 20081120 SecurityReason : PHP 5.2.6 (error_log) safe_mode bypass

HP - HPSBUX02465

HP - SSRT090085


Last Updated: 27 May 2016 10:49:59