Definition


New Search

HP-UX Running Apache with PHP Remote Denial of Service (DoS) Unauthorized Access Privileged Access Cross Site Scripting (XSS)

oval:org.mitre.oval:def:7396

The tempnam function in ext/standard/file.c in PHP before 5.2.12 and 5.3.x before 5.3.1 allows context-dependent attackers to bypass safe_mode restrictions and create files in group-writable or world-writable directories via the dir and prefix arguments.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2009-3557
Product(s):