CVE-2007-3997

HIGH severity · CVSS 7.5 · CWE-264

7.5CVSS HIGH

Summary

The (1) MySQL and (2) MySQLi extensions in PHP 4 before 4.4.8, and PHP 5 before 5.2.4, allow remote attackers to bypass safe_mode and open_basedir restrictions via MySQL LOCAL INFILE operations, as demonstrated by a query with LOAD DATA LOCAL INFILE.

Impact & exploitability

Attack vectorNetwork

Attack complexityLow

Privileges required—

User interaction—

Confidentiality impact—

Integrity impact—

Availability impact—

Exploit probability (EPSS)32%

AV:N/AC:L/Au:N/C:P/I:P/A:P

Affected products we track (1)

PHP

Recommendation

Apply the vendor fix promptly. Open any affected product above for its exact safe version.

Additional information

NVD record
http://secunia.com/advisories/26642Advisory
http://secunia.com/advisories/26822Advisory
http://secunia.com/advisories/26838Advisory
http://secunia.com/advisories/27102Advisory
http://secunia.com/advisories/27377Advisory
http://secunia.com/advisories/28318Advisory
http://securityreason.com/securityalert/3102Advisory
http://secweb.se/en/advisories/php-mysql-safe-mode-bypass-vulnerability/Advisory