Back to search
CVE-2009-4018
Published: Nov 27, 2009
Modified: Aug 7, 2024
PUBLISHED
Description
The proc_open function in ext/standard/proc_open.c in PHP before 5.2.11 and 5.3.x before 5.3.1 does not enforce the (1) safe_mode_allowed_env_vars and (2) safe_mode_protected_env_vars directives, which allows context-dependent attackers to execute programs with an arbitrary environment via the env parameter, as demonstrated by a crafted value of the LD_LIBRARY_PATH environment variable.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
40262
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:7256
vdb-entry
signature
x_refsource_OVAL
HPSBUX02543
vendor-advisory
x_refsource_HP
41490
third-party-advisory
x_refsource_SECUNIA
HPSBMA02568
vendor-advisory
x_refsource_HP
http://www.php.net/ChangeLog-5.php
x_refsource_CONFIRM
37138
vdb-entry
x_refsource_BID
http://bugs.php.net/bug.php?id=49026
x_refsource_CONFIRM
SSRT100219
vendor-advisory
x_refsource_HP
41480
third-party-advisory
x_refsource_SECUNIA
[oss-security] 20091122 Re: CVE request: php 5.3.1 update
mailing-list
x_refsource_MLIST
SSRT100152
vendor-advisory
x_refsource_HP
http://svn.php.net/viewvc/?view=revision&revision=286360
x_refsource_CONFIRM
MDVSA-2009:303
vendor-advisory
x_refsource_MANDRIVA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now