OSVDB ID: 20897

Title: PHP w/ Apache 2 SAPI virtual() Function Unspecified INI Setting Disclosure

Info

Disclosure

Oct 31, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

PHP, when used as an Apache 2 module, contains an unspecified flaw in the virtual() function that may allow a malicious user to bypass certain configuration directives (e.g. "safe_mode" and "open_basedir"). This may allow the disclosure of sensitive information, resulting in a loss of confidentiality.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Unknown
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 4.4.1, 5.1.0 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

The PHP Group	PHP	4.4.0
		5.0.5

References

Bugtraq ID: 15413
Secunia Advisory ID: 17371 17531 17557 17666 17757 18054 18198 19064 22691
CVE ID: 2005-3392 (see also: NVD)
Related OSVDB ID: 20898
ISS X-Force ID: 22924
VUPEN Advisory: ADV-2005-2254
Other Advisory URL: ftp://patches.sgi.com/support/free/security/advisories/20051101-01-U.asc http://frontal2.mandriva.com/security/advisories?name=MDKSA-2005:213
http://lists.suse.com/archive/suse-security-announce/2005-Dec/0005.html
http://www.ubuntu.com/usn/usn-232-1
Keyword: HPSBMA02159,SSRT061238
Vendor Specific Advisory URL: http://docs.info.apple.com/article.html?artnum=303382
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522
http://www.trustix.org/errata/2005/0062/
Vendor Specific News/Changelog Entry: http://jp2.php.net/ChangeLog-5.php#5.1.0
http://www.php.net/release_4_4_1.php
News Article: http://www.informationweek.com/news/showArticle.jhtml;?articleID=181500394
Vendor URL: http://www.php.net/
RedHat RHSA: RHSA-2005:831

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/20897

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

The PHP Group

PHP

References

Credit