CVE-2006-6383
published 2006-12-10CVE-2006-6383: PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path…
PriorityP416medium4.6CVSS 2.0
AVLACLAuNCPIPAP
EXPLOIT
EPSS
1.05%
59.9th percentile
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.
Affected
69 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
CVSS provenance
nvdv2.04.6MEDIUMAV:L/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-chhg-993f-p755: PHP before 5
ghsa_unreviewed·2022-05-01·CVSS 4.6
CVE-2007-0905 [MEDIUM] GHSA-chhg-993f-p755: PHP before 5
PHP before 5.2.1 allows attackers to bypass safe_mode and open_basedir restrictions via unspecified vectors in the session extension. NOTE: it is possible that this issue is a duplicate of CVE-2006-6383.
GHSA
GHSA-vfqf-7vvp-5w4j: PHP 5
ghsa_unreviewed·2022-05-01
CVE-2006-6383 [MEDIUM] CWE-20 GHSA-vfqf-7vvp-5w4j: PHP 5
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.
Red Hat
CVE-2006-6383: PHP 5
vendor_redhat·CVSS 4.6
CVE-2006-6383 [MEDIUM] CVE-2006-6383: PHP 5
PHP 5.2.0 and 4.4 allows local users to bypass safe_mode and open_basedir restrictions via a malicious path and a null byte before a ";" in a session_save_path argument, followed by an allowed path, which causes a parsing inconsistency in which PHP validates the allowed path but sets session.save_path to the malicious path.
Statement: We do not consider these to be security issues. For more details see http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169857#c1
and http://www.php.net/security-note.php
Red Hat
php session extension safe_mode/open_basedir bypass
vendor_redhat·CVSS 4.6
CVE-2007-0905 [MEDIUM] php session extension safe_mode/open_basedir bypass
php session extension safe_mode/open_basedir bypass
PHP before 5.2.1 allows attackers to bypass safe_mode and open_basedir restrictions via unspecified vectors in the session extension. NOTE: it is possible that this issue is a duplicate of CVE-2006-6383.
Statement: We do not consider these to be security issues. For more details see https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169857#c1
and https://www.php.net/security-note.php
No detection rules found.
No writeups or analysis indexed.
http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r2=1.336.2.53.2.8http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.htmlhttp://secunia.com/advisories/24022http://secunia.com/advisories/24514http://securityreason.com/achievement_securityalert/43http://securityreason.com/securityalert/2000http://www.mandriva.com/security/advisories?name=MDKSA-2007:038http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.htmlhttp://www.securityfocus.com/archive/1/453938/30/9270/threadedhttp://www.securityfocus.com/bid/21508http://cvs.php.net/viewcvs.cgi/php-src/ext/session/session.c?r1=1.336.2.53.2.7&r2=1.336.2.53.2.8http://lists.suse.com/archive/suse-security-announce/2007-Mar/0003.htmlhttp://secunia.com/advisories/24022http://secunia.com/advisories/24514http://securityreason.com/achievement_securityalert/43http://securityreason.com/securityalert/2000http://www.mandriva.com/security/advisories?name=MDKSA-2007:038http://www.openpkg.com/security/advisories/OpenPKG-SA-2007.010.htmlhttp://www.securityfocus.com/archive/1/453938/30/9270/threadedhttp://www.securityfocus.com/bid/21508
2006-12-10
Published