Test ID:	100352
Category:	Web application abuses
Title:	PHP 'symlink()' 'open_basedir' Restriction Bypass Vulnerability
Summary:	Determine if php version is 5.2.11 or 5.3.0
Description:	Overview: PHP is prone to an 'open_basedir' restriction-bypass vulnerability because of a design error. Successful exploits could allow an attacker to read and write files in unauthorized locations. This vulnerability would be an issue in shared-hosting configurations where multiple users can create and execute arbitrary PHP script code. In such cases, 'open_basedir' restrictions are expected to isolate users from each other. PHP 5.2.11 and 5.3.0 are vulnerable other versions may also be affected. References: http://www.securityfocus.com/bid/37032 http://securityreason.com/achievement_securityalert/70 http://securityreason.com/achievement_exploitalert/14 http://www.php.net/ Risk factor : Medium
Cross-Ref:	BugTraq ID: 37032
Copyright	This script is Copyright (C) 2009 Greenbone Networks GmbH

This is only one of 29365 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.

New User Registration Email: UserID: Passwd: Please email me your monthly newsletters, informing the latest services, improvements & surveys. Please email me a vulnerability test announcement whenever a new test is added.     Privacy

Registered User Login   UserID:     Passwd:     Forgot userid or passwd? Email/Userid: