Summary
PHP is prone to a security-bypass weakness.
Successful exploits will allow attackers to possibly bypass certain security protections.
PHP 5.3.2 and 5.3.3 are vulnerable.
Solution
Updates are available. Please see the references for more information.
References
Severity
Classification
-
CVE CVE-2010-4700 -
CVSS Base Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Apple Safari 'Webkit' Information Disclosure Vulnerability (Win)
- Apple Safari JavaScript Implementation Information Disclosure Vulnerability (Windows)
- Avant Browser Address Bar Spoofing Vulnerability
- Adobe Reader Multiple Vulnerabilities - Aug07 (Mac OS X)
- Apple Safari 'javascript: URI' XSS Vulnerability - Sep09