The MySQL extension in PHP 5.2.4 and earlier allows remote attackers to bypass safe_mode and open_basedir restrictions via the MySQL (1) LOAD_FILE, (2) INTO DUMPFILE, and (3) INTO OUTFILE functions, a different issue than CVE-2007-3997.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-09-14T01:00:00
Updated: 2024-08-07T15:08:33.919Z
Reserved: 2007-09-13T00:00:00
Link: CVE-2007-4889
Vulnrichment
No data.
NVD
Status : Modified
Published: 2007-09-14T01:17:00.000
Modified: 2018-10-15T21:38:40.207
Link: CVE-2007-4889
Redhat
No data.