CVE-2007-1835

Published: Apr 3, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

PHP 4 before 4.4.5 and PHP 5 before 5.2.1, when using an empty session save path (session.save_path), uses the TMPDIR default after checking the restrictions, which allows local users to bypass open_basedir restrictions.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

ADV-2007-1991

vdb-entry

x_refsource_VUPEN

SSRT071423

vendor-advisory

x_refsource_HP

HPSBTU02232

vendor-advisory

x_refsource_HP

SSRT071429

vendor-advisory

x_refsource_HP

http://www.php-security.org/MOPB/MOPB-36-2007.html

x_refsource_MISC

ADV-2007-2374

vdb-entry

x_refsource_VUPEN

php-sessionsavepath-restriction-bypass(33550)

vdb-entry

x_refsource_XF

25423

third-party-advisory

x_refsource_SECUNIA

HPSBMA02215

vendor-advisory

x_refsource_HP

25850

third-party-advisory

x_refsource_SECUNIA

23183

vdb-entry

x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2007-1835

Description

Affected Products

References