suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.
References
Configurations
History
No history.
Information
Published : 2008-04-02 16:44
Updated : 2024-02-28 11:21
NVD link : CVE-2008-1614
Mitre link : CVE-2008-1614
CVE.ORG link : CVE-2008-1614
JSON object : View
Products Affected
sebastian_marsching
- suphp
CWE
CWE-264
Permissions, Privileges, and Access Controls