CVE-2005-3054
PHP 4.4.0 - Directory Traversal via open_basedir Trailing Slash Bypass
Title source: llmDescription
fopen_wrappers.c in PHP 4.4.0, and possibly other versions, does not properly restrict access to other directories when the open_basedir directive includes a trailing slash, which allows PHP scripts in one directory to access files in other directories whose names are substrings of the original directory.
References (13)
Core 13
Core References
Vendor Advisory x_refsource_confirm
http://www.php.net/release_4_4_1.php
Patch, Vendor Advisory x_refsource_confirm
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=323585
Vendor Advisory vendor-advisory
x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDKSA-2005:213
Various Sources vendor-advisory
x_refsource_trustix
http://lists.trustix.org/pipermail/tsl-announce/2005-October/000354.html
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/1862
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2005/2254
Vendor Advisory vendor-advisory
x_refsource_ubuntu
https://usn.ubuntu.com/207-1/
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/14957
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17371
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17510
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17557
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/17229
Third Party Advisory vendor-advisory
x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200511-08.xml
Scores
EPSS
0.0044
EPSS Percentile
63.5%
Details
Status
published
Products (1)
php/php
4.4.0
Published
Sep 26, 2005
Tracked Since
Feb 18, 2026