CVE-2006-1608

The copy function in file.c in PHP 4.4.2 and 5.1.2 allows local users to bypass safe mode and read arbitrary files via a source argument containing a compress.zlib:// URI.

Date published : 2006-04-10

http://www.securityfocus.com/bid/17439

http://www.securityfocus.com/archive/1/430461/100/0/threaded