← back
CVE-2001-1247

CVE-2001-1247

EPSS 9.4%
PHP 4.0.4pl1 and 4.0.5 in safe mode allows remote attackers to read and write files owned by the web server UID by uploading a PHP script that uses the error_log function to access the files.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://online.securityfocus.com/archive/1/194425http://www.osvdb.org/5440http://www.php.net/do_download.php?download_file=php-4.1.2.tar.gzhttp://www.redhat.com/support/errata/RHSA-2002-035.html