RSS   Vulnerabilities for 'Suphp'   RSS

2008-04-02
 
CVE-2008-1614

CWE-264
 

 
suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.

 


Copyright 2024, cxsecurity.com

 

Back to Top