New Search

PHP 4.4.4 5.1.6 and other versions when running on Apache allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess which causes this setting to be applied to other virtual hosts on the same server.

oval:org.mitre.oval:def:11035

PHP 4.4.4 5.1.6 and other versions when running on Apache allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess which causes this setting to be applied to other virtual hosts on the same server.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • CentOS Linux 4
  • Oracle Linux 5
  • CentOS Linux 3
  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 3
  • CentOS Linux 5
  • Oracle Linux 4
  • Red Hat Enterprise Linux 4
Class:
vulnerability
Reference(s):
  • CVE-2009-0754
Product(s):