oval:org.mitre.oval:def:5510
Definition Id: oval:org.mitre.oval:def:5510 | |||
Oval ID: | oval:org.mitre.oval:def:5510 | ||
Title: | HP-UX Running Apache with PHP, Remote Execution of Arbitrary Code | ||
Description: | The init_request_info function in sapi/cgi/cgi_main.c in PHP before 5.2.6 does not properly consider operator precedence when calculating the length of PATH_TRANSLATED, which might allow remote attackers to execute arbitrary code via a crafted URI. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2008-0599 | Version: | 9 |
Platform(s): | HP-UX 11 | Product(s): | |
Definition Synopsis: | |||
|