CVE-2008-1614

suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.

Date published : 2008-04-02

http://www.securityfocus.com/bid/28568

http://www.debian.org/security/2008/dsa-1550