PT-2011-2344 · Debian+1 · Debian+1

Published

2011-03-29

Updated

2017-08-17

CVE-2011-0441

CVSS v2.0

6.3

Medium

Vector

AV:L/AC:M/Au:N/C:N/I:C/A:C

Name of the Vulnerable Software and Affected Versions PHP version 5.3.5

Description The issue allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/. This is related to the Debian GNU/Linux /etc/cron.d/php5 cron job.

Recommendations For PHP version 5.3.5, consider restricting access to the /var/lib/php5/ directory to prevent symlink attacks until a patch is available. As a temporary workaround, monitor the cron job's activity closely to detect any potential misuse.

Fix

Link Following

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-59

Related Identifiers

CVE-2011-0441

DSA-2195-1

Affected Products

Debian

Php

PT-2011-2344 · Debian+1 · Debian+1

CVE-2011-0441

Weakness Enumeration

Related Identifiers

Affected Products

References · 8