Bug #17156: readfile can bypass safe_mode

Sat, 11 May 2002 12:05:21 -0700 

From:             [EMAIL PROTECTED]
Operating system: Linux 2.4.18
PHP version:      4.2.0
PHP Bug Type:     Scripting Engine problem
Bug description:  readfile can bypass safe_mode

If a readfile() function is passed 2nd parameter it can be used to read ANY
file on the system regardless of safe_mode.

ex.

<?php
readfile('/etc/passwd', 1);
?>
-- 
Edit bug report at http://bugs.php.net/?id=17156&edit=1
-- 
Fixed in CVS:        http://bugs.php.net/fix.php?id=17156&r=fixedcvs
Fixed in release:    http://bugs.php.net/fix.php?id=17156&r=alreadyfixed
Need backtrace:      http://bugs.php.net/fix.php?id=17156&r=needtrace
Try newer version:   http://bugs.php.net/fix.php?id=17156&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=17156&r=support
Expected behavior:   http://bugs.php.net/fix.php?id=17156&r=notwrong
Not enough info:     http://bugs.php.net/fix.php?id=17156&r=notenoughinfo
Submitted twice:     http://bugs.php.net/fix.php?id=17156&r=submittedtwice
register_globals:    http://bugs.php.net/fix.php?id=17156&r=globals

Reply via email to