CVE-2005-3054 - fopen_wrappers.c in PHP 4.4.0, and possibly other versions, does not properly restrict access to oth

CVE-2005-3054

Summary

fopen_wrappers.c in PHP 4.4.0, and possibly other versions, does not properly restrict access to other directories when the open_basedir directive includes a trailing slash, which allows PHP scripts in one directory to access files in other directories whose names are substrings of the original directory.

References

Vulnerable Configurations

cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*
cpe:2.3:a:php:php:4.4.0:*:*:*:*:*:*:*

CVSS

Base:	2.1 (as of 03-10-2018 - 21:31)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	14957
confirm	http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323585 http://www.php.net/release_4_4_1.php
gentoo	GLSA-200511-08
mandriva	MDKSA-2005:213
secunia	17229 17371 17510 17557
trustix	TSLSA-2005-0059
ubuntu	USN-207-1
vupen	ADV-2005-1862 ADV-2005-2254

statements via4

contributor	Mark J Cox
lastmodified	2006-08-30
organization	Red Hat
statement	We do not consider these to be security issues: http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169857#c1

Last major update

03-10-2018 - 21:31

Published

26-09-2005 - 19:03

Last modified

03-10-2018 - 21:31