CVE-2008-2666
published 2008-06-20CVE-2008-2666: Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a…
PriorityP434medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
13.92%
96.1th percentile
Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to the (1) chdir or (2) ftok function.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| php | php | <= 5.2.6 | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
php: chdir(), ftok() (standard ext) safe_mode bypass safe_mode bypass
vendor_redhat·2008-06-18·CVSS 5.0
CVE-2008-2666 [MEDIUM] php: chdir(), ftok() (standard ext) safe_mode bypass safe_mode bypass
php: chdir(), ftok() (standard ext) safe_mode bypass safe_mode bypass
Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to the (1) chdir or (2) ftok function.
Statement: We do not consider these to be security issues. For more details see https://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=169857#c1 and https://www.php.net/security-note.php
GHSA
GHSA-h2vh-q3r8-9vv4: Multiple directory traversal vulnerabilities in PHP 5
ghsa_unreviewed·2022-05-01
CVE-2008-2666 [MEDIUM] CWE-22 GHSA-h2vh-q3r8-9vv4: Multiple directory traversal vulnerabilities in PHP 5
Multiple directory traversal vulnerabilities in PHP 5.2.6 and earlier allow context-dependent attackers to bypass safe_mode restrictions by creating a subdirectory named http: and then placing ../ (dot dot slash) sequences in an http URL argument to the (1) chdir or (2) ftok function.
No detection rules found.
http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://marc.info/?l=bugtraq&m=124654546101607&w=2http://marc.info/?l=bugtraq&m=125631037611762&w=2http://secunia.com/advisories/32746http://secunia.com/advisories/35074http://secunia.com/advisories/35650http://security.gentoo.org/glsa/glsa-200811-05.xmlhttp://securityreason.com/achievement_securityalert/55http://securityreason.com/securityalert/3942http://support.apple.com/kb/HT3549http://wiki.rpath.com/Advisories:rPSA-2009-0035http://www.securityfocus.com/archive/1/501376/100/0/threadedhttp://www.securityfocus.com/bid/29796http://www.securitytracker.com/id?1020328http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vupen.com/english/advisories/2009/1297https://exchange.xforce.ibmcloud.com/vulnerabilities/43198http://lists.apple.com/archives/security-announce/2009/May/msg00002.htmlhttp://marc.info/?l=bugtraq&m=124654546101607&w=2http://marc.info/?l=bugtraq&m=125631037611762&w=2http://secunia.com/advisories/32746http://secunia.com/advisories/35074http://secunia.com/advisories/35650http://security.gentoo.org/glsa/glsa-200811-05.xmlhttp://securityreason.com/achievement_securityalert/55http://securityreason.com/securityalert/3942http://support.apple.com/kb/HT3549http://wiki.rpath.com/Advisories:rPSA-2009-0035http://www.securityfocus.com/archive/1/501376/100/0/threadedhttp://www.securityfocus.com/bid/29796http://www.securitytracker.com/id?1020328http://www.us-cert.gov/cas/techalerts/TA09-133A.htmlhttp://www.vupen.com/english/advisories/2009/1297https://exchange.xforce.ibmcloud.com/vulnerabilities/43198
2008-06-20
Published