CVE-2004-1064

Vulnerability Description

The safe mode checks in PHP 4.x to 4.3.9 and PHP 5.x to 5.0.2 truncate the file path before passing the data to the realpath function, which could allow attackers to bypass safe mode. NOTE: this issue was originally REJECTed by its CNA before publication, but that decision is in active dispute. This candidate may change significantly in the future as a result of further discussion.

CVSS Score

Affected Products

References

• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000915Broken Link
• http://www.gentoo.org/security/en/glsa/glsa-200412-14.xmlThird Party Advisory
• http://www.hardened-php.net/advisories/012004.txtThird Party Advisory
• http://www.mandriva.com/security/advisories?name=MDKSA-2004:151Third Party Advisory
• http://www.mandriva.com/security/advisories?name=MDKSA-2005:072Third Party Advisory
• http://www.php.net/release_4_3_10.phpRelease NotesVendor Advisory
• http://www.securityfocus.com/advisories/9028Third Party AdvisoryVDB Entry
• http://www.securityfocus.com/archive/1/384545Third Party AdvisoryVDB Entry
• http://www.securityfocus.com/bid/11964Third Party AdvisoryVDB Entry
• https://exchange.xforce.ibmcloud.com/vulnerabilities/18512Third Party AdvisoryVDB Entry
• https://www.ubuntu.com/usn/usn-99-1/Third Party Advisory
• https://www.ubuntu.com/usn/usn-99-2/Third Party Advisory
• http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000915Broken Link
• http://www.gentoo.org/security/en/glsa/glsa-200412-14.xmlThird Party Advisory
• http://www.hardened-php.net/advisories/012004.txtThird Party Advisory