php safe mod bypass
Bug #356646 reported by
nubuser
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
php5 (Ubuntu) |
Invalid
|
Undecided
|
Unassigned |
Bug Description
Binary package hint: php5
PHP 5.2.6 (error_log) safe_mode bypass
http://
There is some kind of issue in PHP
we can run out memory even on SAFE_MODE
script simply allocate maximum of memory
and go to sleep for, let's say 9999999 seconds.
sleep() pass 'max_execution_
CVE References
To post a comment you must log in.
The first issue is CVE-2008-5625. Updates are already out for that.