Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2011-0754 | First vendor Publication | 2011-02-02 |
Vendor | Cve | Last vendor Modification | 2018-10-30 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:L/AC:M/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 4.4 | Attack Range | Local |
Cvss Impact Score | 6.4 | Attack Complexity | Medium |
Cvss Expoit Score | 3.4 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
The SplFileInfo::getType function in the Standard PHP Library (SPL) extension in PHP before 5.3.4 on Windows does not properly detect symbolic links, which might make it easier for local users to conduct symlink attacks by leveraging cross-platform differences in the stat structure, related to lack of a FILE_ATTRIBUTE_REPARSE_POINT check. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0754 |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
100 % | CWE-59 | Improper Link Resolution Before File Access ('Link Following') |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:12334 | |||
Oval ID: | oval:org.mitre.oval:def:12334 | ||
Title: | Vulnerability in the Standard PHP Library (SPL) extension in PHP before 5.3.4 | ||
Description: | The SplFileInfo::getType function in the Standard PHP Library (SPL) extension in PHP before 5.3.4 on Windows does not properly detect symbolic links, which might make it easier for local users to conduct symlink attacks by leveraging cross-platform differences in the stat structure, related to lack of a FILE_ATTRIBUTE_REPARSE_POINT check. | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2011-0754 | Version: | 3 |
Platform(s): | Microsoft Windows 2000 Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Vista Microsoft Windows XP | Product(s): | PHP |
Definition Synopsis: | |||
CPE : Common Platform Enumeration
OpenVAS Exploits
Date | Description |
---|---|
2012-06-21 | Name : PHP version smaller than 5.3.4 File : nvt/nopsec_php_5_3_4.nasl |
2011-02-01 | Name : PHP Multiple Security Bypass Vulnerabilities File : nvt/gb_php_mult_sec_bypass_vuln.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
74689 | PHP on Windows SPL Extension SplFileInfo::getType Function Symlink Arbitrary ... |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2010-12-13 | Name : The remote web server uses a version of PHP that is affected by multiple flaws. File : php_5_3_4.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2024-02-02 01:15:26 |
|
2024-02-01 12:04:18 |
|
2023-09-05 12:14:26 |
|
2023-09-05 01:04:10 |
|
2023-09-02 12:14:29 |
|
2023-09-02 01:04:13 |
|
2023-08-12 12:17:26 |
|
2023-08-12 01:04:14 |
|
2023-08-11 12:14:34 |
|
2023-08-11 01:04:22 |
|
2023-08-06 12:14:00 |
|
2023-08-06 01:04:15 |
|
2023-08-04 12:14:05 |
|
2023-08-04 01:04:16 |
|
2023-07-14 12:14:03 |
|
2023-07-14 01:04:13 |
|
2023-03-29 01:15:59 |
|
2023-03-28 12:04:19 |
|
2022-10-11 12:12:32 |
|
2022-10-11 01:04:00 |
|
2020-05-23 01:43:53 |
|
2020-05-23 00:27:49 |
|
2019-06-08 12:03:42 |
|
2018-10-31 00:20:11 |
|
2018-10-10 12:03:34 |
|
2017-09-19 09:24:13 |
|
2017-08-17 09:23:19 |
|
2016-10-05 12:00:43 |
|
2016-06-28 18:33:30 |
|
2016-04-26 20:33:17 |
|
2014-02-17 11:00:33 |
|
2013-05-10 22:54:46 |
|