CVE-2006-2563
The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read files via a file:// request containing null characters.
Date published : 2006-05-29
http://www.securityfocus.com/bid/18116
http://www.mandriva.com/security/advisories?name=MDKSA-2006:122