CVE-2007-4850

curl/interface.c in the cURL library (aka libcurl) in PHP 5.2.4 and 5.2.5 allows context-dependent attackers to bypass safe_mode and open_basedir restrictions and read arbitrary files via a file:// request containing a x00 sequence, a different vulnerability than CVE-2006-2563.
Configurations

Configuration 1

cpe:2.3:a:php:php:5.2.5:*:*:*:*:*:*:*
cpe:2.3:a:php:php:5.2.4:*:*:*:*:*:*:*

Information

Published : 2008-01-25 01:00

Updated : 2018-10-15 09:38


NVD link : CVE-2007-4850

Mitre link : CVE-2007-4850

Products Affected
No products.
CWE