Vulnerabilities

CVE-2007-4850

by Fred · 24/01/2008

curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a x00 sequence, a different vulnerability than CVE-2006-2563.

Date published : 2008-01-24

http://lists.apple.com/archives/security-announce//2008/Jul/msg00003.html

http://lists.apple.com/archives/security-announce/2008/Oct/msg00001.html

Related

Tags: Cybersecurity Alert