2.1

CVE-2006-2563

The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read files via a file:// request containing null characters.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
PhpPhp Version4.4.2
PhpPhp Version5.1.4
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.41% 0.323
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 2.1 3.9 2.9
AV:L/AC:L/Au:N/C:P/I:N/A:N
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/21050
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122
http://secunia.com/advisories/20337
http://secunia.com/advisories/21847
http://secunia.com/advisories/22039
http://securityreason.com/achievement_securityalert/39
http://securityreason.com/securityalert/959
http://securitytracker.com/id?1016175
http://www.novell.com/linux/security/advisories/2006_22_sr.html
http://www.novell.com/linux/security/advisories/2006_52_php.html
http://www.securityfocus.com/bid/18116
http://www.vupen.com/english/advisories/2006/2055
https://exchange.xforce.ibmcloud.com/vulnerabilities/26764