|
php-exec-dir Command Execution Bypass Vulnerability
|
|
Secunia Advisory:
|
SA11928
|
|
|
Release Date:
|
2004-06-24
|
|
Last Update:
|
2004-07-08
|
|
Popularity:
|
9,225 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
Security Bypass
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | php-exec-dir
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
|
Description:
VeNoMouS has reported a vulnerability in php-exec-dir, which can be exploited by malicious users to bypass certain security restrictions.
php-exec-dir is used to limit execution of external commands when "safe mode" is disabled. However, it is possible to bypass this protection due to an input validation error by including certain meta characters before the command to be executed.
Successful exploitation requires that a user can upload PHP scripts to an affected system or specify commands in another way.
Solution:
Updated patches are reportedly available.
http://kyberdigi.cz/projects/execdir/english.html
Use the "safe mode" functionality instead, if this kind of protection is required.
Provided and/or discovered by:
VeNoMouS
Changelog:
2004-07-08: Updated advisory.
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
