1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
|
PublicDate: 2007-10-12
Candidate: CVE-2007-5424
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5424
Description:
The disable_functions feature in PHP 4 and 5 allows attackers to bypass
intended restrictions by using an alias, as demonstrated by using ini_alter
when ini_set is disabled.
Ubuntu-Description:
Notes:
kees> this is a configuration issue, not a PHP vulnerability.
Bugs:
Priority: low
Assigned-to:
upstream_php5: needs-triage
dapper_php5: ignored
edgy_php5: ignored
feisty_php5: ignored
gutsy_php5: ignored
devel_php5: ignored
dapper_php4: ignored
edgy_php4: ignored
feisty_php4: DNE
gutsy_php4: DNE
devel_php4: DNE
upstream_php4:
|