Vulnerability & Exploit Database

Back to search

PHP Vulnerability: CVE-2014-3981

Severity CVSS Published Added Modified
3 (AV:L/AC:M/Au:N/C:N/I:P/A:P) June 08, 2014 July 04, 2014 April 15, 2015

Description

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

php-upgrade-5_4_30

Related Vulnerabilities