Vulnerability & Exploit Database

Back to search

PHP Vulnerability: CVE-2014-3981

Severity CVSS Published Added Modified
3 (AV:L/AC:M/Au:N/C:N/I:P/A:P) June 07, 2014 July 03, 2014 April 14, 2015

Description

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

php-upgrade-5_4_30

Related Vulnerabilities