Zend Platform 2.2.3 and earlier has incorrect ownership for scd.sh and certain other files, which allows local users to gain root privileges by modifying the files. NOTE: this only occurs when safe_mode and open_basedir are disabled; other settings require leverage for other vulnerabilities.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-03-09T22:00:00

Updated: 2024-08-07T12:50:34.987Z

Reserved: 2007-03-09T00:00:00

Link: CVE-2007-1370

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2007-03-09T22:19:00.000

Modified: 2017-07-29T01:30:45.813

Link: CVE-2007-1370

cve-icon Redhat

No data.