Vulnerability Description
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Php | Php | 4.4.0 |
Related Weaknesses (CWE)
References
- http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r
- http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
- http://secunia.com/advisories/24022Vendor Advisory
- http://secunia.com/advisories/24514Vendor Advisory
- http://securityreason.com/achievement_securityalert/43Exploit
- http://securityreason.com/securityalert/2000
- http://www.mandriva.com/security/advisories?name=MDKSA-2007:038
- http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html
- http://www.securityfocus.com/archive/1/453938/30/9270/threaded
- http://www.securityfocus.com/bid/21508Exploit
- http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r
- http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
- http://secunia.com/advisories/24022Vendor Advisory
- http://secunia.com/advisories/24514Vendor Advisory
- http://securityreason.com/achievement_securityalert/43Exploit
FAQ
What is CVE-2006-6383?
CVE-2006-6383 is a vulnerability with a CVSS score of 4.6 (MEDIUM). PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, w...
How severe is CVE-2006-6383?
CVE-2006-6383 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6383?
Check the references section above for vendor advisories and patch information. Affected products include: Php Php.