QwikSec

Security Database

CVE

CWE

Training

CVE-2006-6383

Published: Dec 10, 2006

Modified: Aug 7, 2024

PUBLISHED

Description

PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

third-party-advisory

x_refsource_SECUNIA

OpenPKG-SA-2007.010

vendor-advisory

x_refsource_OPENPKG

20061208 PHP 5.2.0 session.save_path safe_mode and open_basedir bypass

mailing-list

x_refsource_BUGTRAQ

third-party-advisory

x_refsource_SECUNIA

third-party-advisory

x_refsource_SREASON

http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r2=1.336.2.53.2.8

x_refsource_CONFIRM

vendor-advisory

x_refsource_MANDRIVA

20061208 PHP 5.2.0 session.save_path safe_mode and open_basedir bypass

third-party-advisory

x_refsource_SREASONRES

SUSE-SA:2007:020

vendor-advisory

x_refsource_SUSE

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.