CVE-2007-4596
Published: 30 August 2007
The perl extension in PHP does not follow safe_mode restrictions, which allows context-dependent attackers to execute arbitrary code via the Perl eval function. NOTE: this might only be a vulnerability in limited environments.
Notes
| Author | Note |
|---|---|
| kees | safe_mode not supported |
Priority
Status
| Package | Release | Status |
|---|---|---|
|
php4 Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life, was needed)
|
| edgy |
Ignored
(end of life, was needed)
|
|
| feisty |
Does not exist
|
|
| gutsy |
Does not exist
|
|
| hardy |
Does not exist
|
|
| upstream |
Needs triage
|
|
|
php5 Launchpad, Ubuntu, Debian |
dapper |
Ignored
(end of life, was needed)
|
| edgy |
Ignored
(end of life, was needed)
|
|
| feisty |
Ignored
(end of life, was needed)
|
|
| gutsy |
Ignored
(end of life, was needed)
|
|
| hardy |
Ignored
(end of life, was needed)
|
|
| upstream |
Needs triage
|