Your submission was sent successfully! Close

CVE-2006-3011

Published: 26 June 2006

The error_log function in basic_functions.c in PHP before 4.4.4 and 5.x before 5.1.5 allows local users to bypass safe mode and open_basedir restrictions via a "php://" or other scheme in the third argument, which disables safe mode.

Priority

Unknown

Status

Package Release Status
php5
Launchpad, Ubuntu, Debian
dapper
Released (5.1.2-1ubuntu3.9)
edgy Not vulnerable

feisty Not vulnerable

upstream Needs triage