The (1) session_save_path, (2) ini_set, and (3) error_log functions in PHP 4.4.7 and earlier, and PHP 5 5.2.3 and earlier, when invoked from a .htaccess file, allow remote attackers to bypass safe_mode and open_basedir restrictions and possibly execute arbitrary commands, as demonstrated using (a) php_value, (b) php_flag, and (c) directives in .htaccess.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-06-29T18:00:00
Updated: 2024-08-07T14:14:12.954Z
Reserved: 2007-06-25T00:00:00
Link: CVE-2007-3378
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-06-29T18:30:00.000
Modified: 2024-11-21T00:33:05.503
Link: CVE-2007-3378
Redhat
No data.