CVE Vulnerabilities

CVE-2004-0530

Published: Aug 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

The PHP package in Slackware 8.1, 9.0, and 9.1, when linked against a static library, includes /tmp in the search path, which allows local users to execute arbitrary code as the PHP user by inserting shared libraries into the appropriate path.

Affected Software

Name Vendor Start Version End Version
Slackware_linux Slackware 8.1 (including) 8.1 (including)
Slackware_linux Slackware 9.0 (including) 9.0 (including)
Slackware_linux Slackware 9.1 (including) 9.1 (including)

References