Back to search
CVE-2011-2202
Published: Jun 16, 2011
Modified: Aug 6, 2024
PUBLISHED
Description
The rfc1867_post_handler function in main/rfc1867.c in PHP before 5.3.7 does not properly restrict filenames in multipart/form-data POST requests, which allows remote attackers to conduct absolute path traversal attacks, and possibly create or overwrite arbitrary files, via a crafted upload request, related to a "file path injection vulnerability."
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
48259
vdb-entry
x_refsource_BID
HPSBOV02763
vendor-advisory
x_refsource_HP
http://svn.php.net/viewvc?view=revision&revision=312103
x_refsource_CONFIRM
http://support.apple.com/kb/HT5130
x_refsource_CONFIRM
49241
vdb-entry
x_refsource_BID
1025659
vdb-entry
x_refsource_SECTRACK
php-sapiposthandlerfunc-sec-bypass(67999)
vdb-entry
x_refsource_XF
MDVSA-2011:165
vendor-advisory
x_refsource_MANDRIVA
44874
third-party-advisory
x_refsource_SECUNIA
DSA-2266
vendor-advisory
x_refsource_DEBIAN
APPLE-SA-2012-02-01-1
vendor-advisory
x_refsource_APPLE
[oss-security] 20110613 Re: CVE Request: PHP File upload filename
mailing-list
x_refsource_MLIST
SSRT100826
vendor-advisory
x_refsource_HP
http://bugs.php.net/bug.php?id=54939
x_refsource_CONFIRM
RHSA-2011:1423
vendor-advisory
x_refsource_REDHAT
http://www.php.net/ChangeLog-5.php#5.3.7
x_refsource_CONFIRM
[oss-security] 20110612 CVE Request: PHP File upload filename
mailing-list
x_refsource_MLIST
RHSA-2012:0071
vendor-advisory
x_refsource_REDHAT
http://www.php.net/archive/2011.php#id2011-08-18-1
x_refsource_CONFIRM
http://pastebin.com/1edSuSVN
x_refsource_MISC
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now