CVE-2006-1494

Directory traversal vulnerability in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass open_basedir restrictions allows remote attackers to create files in arbitrary directories via the tempnam function.

Date published : 2006-04-10

http://www.securityfocus.com/bid/17439

http://www.securityfocus.com/archive/1/447866/100/0/threaded