suPHP before 0.6.3 allows local users to gain privileges via (1) a race condition that involves multiple symlink changes to point a file owned by a different user, or (2) a symlink to the directory of a different user, which is used to determine privileges.
Weaknesses in this category are related to the management of permissions, privileges, and other security features that are used to perform access control.
Link | Tags |
---|---|
http://lists.marsching.biz/pipermail/suphp/2008-March/001750.html | mailing list |
http://www.vupen.com/english/advisories/2008/1073/references | vdb entry |
https://bugzilla.redhat.com/show_bug.cgi?id=439687 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/41582 | vdb entry |
http://secunia.com/advisories/29615 | third party advisory vendor advisory |
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00075.html | vendor advisory |
http://www.debian.org/security/2008/dsa-1550 | vendor advisory |
http://secunia.com/advisories/29872 | third party advisory |
http://secunia.com/advisories/29648 | third party advisory |
https://www.redhat.com/archives/fedora-package-announce/2008-April/msg00014.html | vendor advisory |
http://www.securityfocus.com/bid/28568 | vdb entry |