PHP before 5.2.5 allows local users to bypass protection mechanisms configured through php_admin_value or php_admin_flag in httpd.conf by using ini_set to modify arbitrary configuration variables, a different issue than CVE-2006-4625.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Php | Php | * | 5.2.4 (including) |