The win32std extension in PHP 5.2.3 does not follow safe_mode and disable_functions restrictions, which allows remote attackers to execute arbitrary commands via the win_shell_execute function.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-07-26T00:00:00
Updated: 2024-08-07T14:37:05.915Z
Reserved: 2007-07-25T00:00:00
Link: CVE-2007-4010
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-07-26T00:30:00.000
Modified: 2017-09-29T01:29:11.657
Link: CVE-2007-4010
Redhat
No data.