In windows, chmod-related function calls are pretty much ignored. Privileges depend on how your system directories, users and groups are set up, so there is no way to really know upfront whether your system is vulnerable or not.
Marco Pivetta http://twitter.com/Ocramius http://ocramius.github.com/ On 18 September 2015 at 16:56, 宇都宮諒 <[email protected]> wrote: > Hi, > > I'm using Doctrine2 on Windows Server 2012. > Is CVE-2015-5723 affects Windows environment? > I tried `echo umask()` and it returned "0". > > Regards, > Ryo Utsunomiya > > 2015年8月31日月曜日 23時06分27秒 UTC+9 kontakt: > >> Hello, >> >> we want to notify you of a Security Misconfiguration Vulnerability in >> various Doctrine libraries: >> >> >> http://www.doctrine-project.org/2015/08/31/security_misconfiguration_vulnerability_in_various_doctrine_projects.html >> >> Please check if you applications are misconfigured and affected, it can >> allow local arbitrary code execution and privilege escalation. >> >> Please ask any questions in this thread. >> >> greetings >> Doctrine Team >> > -- > You received this message because you are subscribed to the Google Groups > "doctrine-user" group. > To unsubscribe from this group and stop receiving emails from it, send an > email to [email protected]. > To post to this group, send email to [email protected]. > Visit this group at http://groups.google.com/group/doctrine-user. > For more options, visit https://groups.google.com/d/optout. > -- You received this message because you are subscribed to the Google Groups "doctrine-user" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. Visit this group at http://groups.google.com/group/doctrine-user. For more options, visit https://groups.google.com/d/optout.
