CVE Vulnerabilities

CVE-2007-3378

Published: Jun 29, 2007 | Modified: Sep 18, 2020
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

The (1) session_save_path, (2) ini_set, and (3) error_log functions in PHP 4.4.7 and earlier, and PHP 5 5.2.3 and earlier, when invoked from a .htaccess file, allow remote attackers to bypass safe_mode and open_basedir restrictions and possibly execute arbitrary commands, as demonstrated using (a) php_value, (b) php_flag, and (c) directives in .htaccess.

Affected Software

Name Vendor Start Version End Version
Php Php 4.0.0 (including) 4.4.7 (including)
Php Php 5.0.0 (including) 5.2.3 (including)
Php4 Ubuntu dapper *
Php4 Ubuntu edgy *

References