4.6
CVE-2006-6383
- EPSS 1.09%
- Veröffentlicht 10.12.2006 20:28:00
- Zuletzt bearbeitet 16.06.2026 22:33:00
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.09% | 0.613 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 4.6 | 3.9 | 6.4 |
AV:L/AC:L/Au:N/C:P/I:P/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r2=1.336.2.53.2.8
http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.html
http://secunia.com/advisories/24022
http://secunia.com/advisories/24514
http://securityreason.com/achievement_securityalert/43
http://securityreason.com/securityalert/2000
http://www.mandriva.com/security/advisories?name=MDKSA-2007:038
http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.html
http://www.securityfocus.com/archive/1/453938/30/9270/threaded
http://www.securityfocus.com/bid/21508