Vulnerability Description
The error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local users to bypass safe mode and open_basedir restrictions via a "php://" or other scheme in the third argument, which disables safe mode.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Php | Php | <= 4.4.3 |
Related Weaknesses (CWE)
References
- http://cvs.php.net/viewvc.cgi/php-src/ext/standard/basic_functions.c?diff_format
- http://cvs.php.net/viewvc.cgi/php-src/ext/standard/basic_functions.c?r1=1.543.2.
- http://secunia.com/advisories/20818Vendor Advisory
- http://secunia.com/advisories/21050Vendor Advisory
- http://secunia.com/advisories/21125Vendor Advisory
- http://secunia.com/advisories/21546PatchVendor Advisory
- http://securityreason.com/achievement_securityalert/41Exploit
- http://securityreason.com/securityalert/1129
- http://securitytracker.com/id?1016377
- http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
- http://www.osvdb.org/26827
- http://www.php.net/release_5_1_5.php
- http://www.securityfocus.com/bid/18645
- http://www.ubuntu.com/usn/usn-320-1
- http://www.vupen.com/english/advisories/2006/2523Vendor Advisory
FAQ
What is CVE-2006-3011?
CVE-2006-3011 is a vulnerability with a CVSS score of 4.6 (MEDIUM). The error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local users to bypass safe mode and open_basedir restrictions via a "php://" or other scheme in the third ar...
How severe is CVE-2006-3011?
CVE-2006-3011 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3011?
Check the references section above for vendor advisories and patch information. Affected products include: Php Php.