SecurityReason

2 exploits Active since Dec 2008

CVE-2008-5625 EXPLOITDB text WRITEUP

PHP < 5.2.7 - Arbitrary File Write via .htaccess error_log Directive

PHP 5 before 5.2.7 does not enforce the error_log safe_mode restrictions when safe_mode is enabled through a php_admin_flag setting in httpd.conf, which allows context-dependent attackers to write to arbitrary files by placing a "php_value error_log" entry in a .htaccess file.

View Code

CVE-2009-0537 EXPLOITDB text WRITEUP

Microsoft Interix 6.0 build 10.0.6030.0 and OpenBSD <= 4.4 - Denial of Service via Deep Directory Tree

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10.0.6030.0 allows context-dependent attackers to cause a denial of service (application crash) via a deep directory tree, related to the fts_level structure member, as demonstrated by (a) du, (b) rm, (c) chmod, and (d) chgrp on OpenBSD; and (e) SearchIndexer.exe on Vista Enterprise.

View Code