CVE-2008-0145
PHP < 4.4.8 - Unspecified Vulnerability in glob with open_basedir
Title source: llmDescription
Unspecified vulnerability in glob in PHP before 4.4.8, when open_basedir is enabled, has unknown impact and attack vectors. NOTE: this issue reportedly exists because of a regression related to CVE-2007-4663.
References (8)
Core 8
Core References
Third Party Advisory vdb-entry
x_refsource_vupen
http://www.vupen.com/english/advisories/2008/0059
Release Notes x_refsource_confirm
http://www.php.net/releases/4_4_8.php
Vendor Advisory vendor-advisory
x_refsource_slackware
http://slackware.com/security/viewer.php?l=slackware-security&y=2008&m=slackware-security.335136
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28936
Exploit x_refsource_confirm
http://bugs.php.net/bug.php?id=41655
Vendor Advisory x_refsource_confirm
http://www.php.net/ChangeLog-4.php
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/28318
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/39401
Scores
EPSS
0.0095
EPSS Percentile
76.6%
Details
CWE
CWE-264
Status
published
Products (1)
php/php
< 4.4.7
Published
Jan 08, 2008
Tracked Since
Feb 18, 2026