CVE-2004-1392

PHP 4.0 - Open Redirect

Title source: llm

Description

PHP 4.0 with cURL functions allows remote attackers to bypass the open_basedir setting and read arbitrary files via a file: URL argument to the curl_init function.

Exploits (1)

exploitdb WORKING POC VERIFIED

by FraMe · phpremotephp

https://www.exploit-db.com/exploits/24711

View Code ZIP pw:eip

References (9)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/17900

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-406.html

[Exploit, Patch] http://www.securityfocus.com/bid/11557

[Mailing List] http://marc.info/?l=bugtraq&m=110625060220934&w=2

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9279

[Patch] https://bugzilla.fedora.us/show_bug.cgi?id=2344

[Exploit] http://securitytracker.com/id?1011984

[Mailing List] http://marc.info/?l=bugtraq&m=109898213806099&w=2

[Vendor Advisory] http://www.redhat.com/support/errata/RHSA-2005-405.html

Scores

EPSS 0.0759

EPSS Percentile 91.9%

Details

Status published

Products (8)

php/php 4.0

php/php 4.0.1 (3 CPE variants)

php/php 4.0.2

php/php 4.0.3 (2 CPE variants)

php/php 4.0.4

php/php 4.0.5

php/php 4.0.6

php/php 4.0.7 (4 CPE variants)

Published Dec 31, 2004

Tracked Since Feb 18, 2026