[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248364

 
 

909

 
 

195388

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2006-6383Date: (C)2006-12-10   (M)2023-12-22


PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 4.6
Exploit Score: 3.9
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
SREASON-2000
http://www.securityfocus.com/archive/1/archive/1/453938/30/9270/threaded
BID-21508
SECUNIA-24022
SECUNIA-24514
MDKSA-2007:038
OpenPKG-SA-2007.010
SUSE-SA:2007:020
http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r2=1.336.2.53.2.8

CPE    2
cpe:/a:php:php:5.2.0
cpe:/a:php:php:4.4.0
CWE    1
CWE-20

© SecPod Technologies