DescriptionPHP 4.x up to 4.4.4 and PHP 5 up to 5.1.6 allows local users to bypass certain Apache HTTP Server httpd.conf options, such as safe_mode and open_basedir, via the ini_restore function, which resets the values to their php.ini (Master Value) defaults.
Overall state of this security issue: Resolved
This issue is currently not rated by SUSE as it is not affecting the SUSE Enterprise products.
|National Vulnerability Database|
SUSE Security Advisories:
- SUSE-SA:2006:059, published Mon, 09 Oct 2006 16:00:00 +0000
SUSE Timeline for this CVECVE page created: Fri Jun 28 05:11:20 2013
CVE page last modified: Sun Jul 2 11:19:02 2023