CVE-2010-3436MEDIUM
New! CVE Severity Now Using CVSS v3
The calculated severity for CVEs has been updated to use CVSS v3 by default. CVEs that do not have a CVSS v3 score will fall back CVSS v2 for calculating severity. Severity display preferences can be toggled in the settings dropdown.
Description
fopen_wrappers.c in PHP 5.3.x through 5.3.3 might allow remote attackers to bypass open_basedir restrictions via vectors related to the length of a filename.
References
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html
http://secunia.com/advisories/42729
http://secunia.com/advisories/42812
http://security-tracker.debian.org/tracker/CVE-2010-3436
http://slackware.com/security/viewer.php?l=slackware-security&y=2010&m=slackware-security.490619
http://support.apple.com/kb/HT4581
http://support.apple.com/kb/HT5002
http://svn.php.net/viewvc/php/php-src/trunk/main/fopen_wrappers.c?r1=303824&r2=303823&pathrev=303824
http://svn.php.net/viewvc?view=revision&revision=303824
http://www.mandriva.com/security/advisories?name=MDVSA-2010:218
http://www.php.net/archive/2010.php#id2010-12-10-1
http://www.php.net/ChangeLog-5.php
http://www.php.net/releases/5_2_15.php
http://www.php.net/releases/5_3_4.php
http://www.securityfocus.com/bid/44723
http://www.ubuntu.com/usn/USN-1042-1
Vulnerable Software
Configuration 1
OR
cpe:2.3:a:php:php:5.3.0:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.3.1:*:*:*:*:*:*:*
Tenable Plugins
| ID | Name | Product | Family | Severity |
|---|---|---|---|---|
| 58811 | HP System Management Homepage < 7.0 Multiple Vulnerabilities | Nessus | Web Servers | critical |
| 56481 | Mac OS X Multiple Vulnerabilities (Security Update 2011-006) | Nessus | MacOS X Local Security Checks | critical |
| 56459 | GLSA-201110-06 : PHP: Multiple vulnerabilities | Nessus | Gentoo Local Security Checks | critical |
| 52753 | Mac OS X Multiple Vulnerabilities (Security Update 2011-001) | Nessus | MacOS X Local Security Checks | high |
| 800796 | Mac OS X 10.6 < 10.6.7 Multiple Vulnerabilities | Log Correlation Engine | Operating System Detection | high |
| 5826 | Mac OS X 10.6 < 10.6.7 Multiple Vulnerabilities | Nessus Network Monitor | Generic | critical |
| 51525 | Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : php5 regression (USN-1042-2) | Nessus | Ubuntu Local Security Checks | medium |
| 51506 | FreeBSD : php -- open_basedir bypass (73634294-0fa7-11e0-becc-0022156e8794) | Nessus | FreeBSD Local Security Checks | medium |
| 51502 | Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 : php5 vulnerabilities (USN-1042-1) | Nessus | Ubuntu Local Security Checks | medium |
| 51371 | Slackware 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / current : php (SSA:2010-357-01) | Nessus | Slackware Local Security Checks | medium |
| 51152 | FreeBSD : php -- multiple vulnerabilities (5353) | Nessus | FreeBSD Local Security Checks | medium |
| 801097 | PHP 5.2.x < 5.2.15 Multiple Vulnerabilities | Log Correlation Engine | Web Servers | high |
| 5733 | PHP 5.2.x < 5.2.15 Multiple Vulnerabilities | Nessus Network Monitor | Web Servers | high |
| 51140 | PHP 5.3 < 5.3.4 Multiple Vulnerabilities | Nessus | CGI abuses | medium |
| 51139 | PHP 5.2 < 5.2.15 Multiple Vulnerabilities | Nessus | CGI abuses | medium |
| 801074 | PHP 5.3 < 5.3.4 Multiple Vulnerabilities | Log Correlation Engine | Web Servers | high |
| 5732 | PHP 5.3.x < 5.3.4 Multiple Vulnerabilities | Nessus Network Monitor | Web Servers | high |
| 50429 | Mandriva Linux Security Advisory : php (MDVSA-2010:218) | Nessus | Mandriva Local Security Checks | medium |