CVE-2008-7002

Publication date 19 August 2009

Last updated 24 July 2024

Description

PHP 5.2.5 does not enforce (a) open_basedir and (b) safe_mode_exec_dir restrictions for certain functions, which might allow local users to bypass intended access restrictions and call programs outside of the intended directory via the (1) exec, (2) system, (3) shell_exec, (4) passthru, or (5) popen functions, possibly involving pathnames such as "C:" drive notation.

Read the notes from the security team

Status

Show unmaintained releases

Package	Ubuntu Release	Status
php5	9.04 jaunty	Ignored
	8.10 intrepid	Ignored
	8.04 LTS hardy	Ignored
	6.06 LTS dapper	Ignored

How can I get the fixes?
What do statuses mean?

Notes

jdstrand

PoC at http://downloads.securityfocus.com/vulnerabilities/exploits/31064.php

mdeslaur

The "PoC" doesn't turn on safe_mode, so of course safe_mode_exec_dir doesn't work. Ignoring.

References

MITRE
NVD
Launchpad
Debian

Other references

https://www.cve.org/CVERecord?id=CVE-2008-7002