CVE-2007-5424
The disable_functions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using ini_alter when ini_set is disabled.
Date published : 2007-10-12
http://www.securityfocus.com/archive/1/482006/100/0/threaded