PROBLEM: | PHP contains a path translation vulnerability that may allow an attacker to execute arbitrary code. |
PLATFORM: | PHP 5.2.5 HP-UX B.11.11, B.11.23, B.11.31 running Apache with PHP v5.2.5 or earlier |
DAMAGE: | Execute arbitrary code. |
SOLUTION: | Upgrade to the appropriate version. |
VULNERABILITY ASSESSMENT: |
The risk is MEDIUM. An attacker may be able to execute arbitrary code in the context of an application that uses the vulnerable function. The scope of the impact depends on how the affected application works. Applications that process filename input from the network, such as public-facing web applications, would be vulnerable to a remote attacker. |
CVSS 2 BASE SCORE: TEMPORAL SCORE: VECTOR: |
7.5 5.9 (AV:N/AC:L/Au:N/C:P/I:P/A:P/E:POC/RL:OF/RC:C) |
LINKS: | |
CIAC BULLETIN: | http://www.ciac.org/ciac/bulletins/s-286.shtml |
ORIGINAL BULLETIN: | http://www.kb.cert.org/vuls/id/147027 |
ADDITIONAL LINK: | Visit Hewlett-Packard Subscription Service for: HPSBUX02342 SSRT080063 rev. 2 |
CVE: | CVE-2008-0599 |
REVISION HISTORY: 6/27/2008 - revised S-286 to add a link to Hewlett-Packard's Subscription Service for: HPSBUX02342 SSRT080063 rev. 2 for HP-UX B.11.11, B.11.23, B.11.31 running Apache with PHP v5.2.5 or earlier. [***** Start US-CERT Vulnerability Note VU#147027 *****]
PHP versions prior to 5.2.6 contain a path translation vulnerability. For more information about this issue, see the PHP CVS log.
PHP 5.2.6 was released to address this and other issues.
Vendor | Status | Date Updated |
---|---|---|
The PHP Group | Vulnerable | 6-May-2008 |
https://www.securecoding.cert.org/confluence/x/_wI
http://www.php.net/ChangeLog-5.php
http://cvs.php.net/viewvc.cgi/php-src/sapi/cgi/cgi_main.c?r1=1.267.2.15.2.50.2.12&r2=1.267.2.15.2.50.2.13&diff_format=u
Thanks to the PHP team for information that was used in this report.
This document was written by Ryan Giobbi.
Date Public | 05/06/2008 |
Date First Published | 05/06/2008 02:52:57 PM |
Date Last Updated | 05/06/2008 |
CERT Advisory | |
CVE Name | CVE-2008-0599 |
US-CERT Technical Alerts | |
Metric | 1.13 |
Document Revision | 17 |
[***** End US-CERT Vulnerability Note VU#147027 *****]
Voice: +1 925-422-8193 (7 x 24) FAX: +1 925-423-8002 STU-III: +1 925-423-2604 E-mail: ciac@ciac.org World Wide Web: http://www.ciac.org/ Anonymous FTP: ftp.ciac.org