CVE-2000-0059 - CVE Details

Description

PHP3 with safe_mode enabled does not properly filter shell metacharacters from commands that are executed by popen, which could allow remote attackers to execute commands.

Severity

Overall Severity: N/A

CVSS Metrics

Type	Score	Severity	Vector

Affected Products

php - php

Affected Versions:

php - php

Affected Versions:

3.0.1

php - php

Affected Versions:

3.0.2

php - php

Affected Versions:

3.0.3

php - php

Affected Versions:

3.0.4

php - php

Affected Versions:

3.0.5

php - php

Affected Versions:

3.0.6

php - php

Affected Versions:

3.0.7

php - php

Affected Versions:

3.0.8

php - php

Affected Versions:

3.0.9

php - php

Affected Versions:

3.0.10

php - php

Affected Versions:

3.0.11

php - php

Affected Versions:

3.0.12

php - php

Affected Versions:

3.0.13

References

http://www.securityfocus.com/bid/911
http://www.securityfocus.com/bid/911