PT-2007-2764 · Zend · Zend Platform

Published

2007-03-09

Updated

2017-07-29

CVE-2007-1369

CVSS v2.0

4.4

Medium

Vector

AV:L/AC:M/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Zend Platform versions 2.2.3 and earlier

Description The issue allows local users to modify the system php.ini file. This is achieved by editing a copy of the php.ini file using the -f parameter and then performing a symlink attack. The attack involves creating a directory with an attacker-controlled php.ini file and linking this directory to /usr/local/Zend/etc.

Recommendations For Zend Platform versions 2.2.3 and earlier, consider restricting access to the ini modifier function to prevent unauthorized modifications to the system php.ini file. As a temporary workaround, restrict write access to the /usr/local/Zend/etc directory to minimize the risk of exploitation.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-1369

Affected Products

Zend Platform

PT-2007-2764 · Zend · Zend Platform

CVE-2007-1369

Related Identifiers

Affected Products

References · 10