|
|
Family: CGI abuses --> Category: infos
php < 4.3.3 Vulnerability Scan
Vulnerability Scan Summary
Checks for version of PHP
Detailed Explanation for this Vulnerability Test
The remote host is running a version of PHP 4.3 which is older or equal to
4.3.2.
There is a flaw in this version which may allow a local attacker to
bypass the safe mode and gain unauthorized access to files on the local
system, thanks to a flaw in the function php_safe_mode_include_dir().
Solution : Upgrade to PHP 4.3.3 when it is available
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
