CVE-2011-1144
PEAR < 1.9.2 - Arbitrary File Overwrite via Symlink Attack on package.xml
Title source: llmDescription
The installer in PEAR 1.9.2 and earlier allows local users to overwrite arbitrary files via a symlink attack on the package.xml file, related to the (1) download_dir, (2) cache_dir, (3) tmp_dir, and (4) pear-build-download directories. NOTE: this vulnerability exists because of an incomplete fix for CVE-2011-1072.
References (8)
Core 8
Core References
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/02/28/5
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/01/7
Various Sources x_refsource_misc
http://pear.php.net/bugs/bug.php?id=18056
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/01/8
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/65911
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/01/5
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/01/4
Mailing List mailing-list
x_refsource_mlist
http://openwall.com/lists/oss-security/2011/03/01/9
Scores
EPSS
0.0012
EPSS Percentile
30.3%
Details
CWE
CWE-59
Status
published
Products (25)
php/pear
0.2.2
php/pear
0.9
php/pear
0.10
php/pear
0.11
php/pear
0.90
php/pear
1.0
php/pear
1.0.1
php/pear
1.1
php/pear
1.2
php/pear
1.2.1
... and 15 more
Published
Mar 03, 2011
Tracked Since
Feb 18, 2026