CVE-2002-0229 - Vulnerability Details - OpenCVE

Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using "LOAD DATA INFILE LOCAL" SQL statements.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Php	Php

Configuration 1 [-]

OR	cpe:2.3:a:php:php:3.0:::::::*
	cpe:2.3:a:php:php:3.0.1:::::::*
	cpe:2.3:a:php:php:3.0.2:::::::*
	cpe:2.3:a:php:php:3.0.3:::::::*
	cpe:2.3:a:php:php:3.0.4:::::::*
	cpe:2.3:a:php:php:3.0.5:::::::*
	cpe:2.3:a:php:php:3.0.6:::::::*
	cpe:2.3:a:php:php:3.0.7:::::::*
	cpe:2.3:a:php:php:3.0.8:::::::*
	cpe:2.3:a:php:php:3.0.9:::::::*
	cpe:2.3:a:php:php:3.0.10:::::::*
	cpe:2.3:a:php:php:3.0.11:::::::*
	cpe:2.3:a:php:php:3.0.12:::::::*
	cpe:2.3:a:php:php:3.0.13:::::::*
	cpe:2.3:a:php:php:3.0.16:::::::*
	cpe:2.3:a:php:php:4.0:::::::*
	cpe:2.3:a:php:php:4.0.1:::::::*
	cpe:2.3:a:php:php:4.0.1:patch2::::::
	cpe:2.3:a:php:php:4.0.3:::::::*
	cpe:2.3:a:php:php:4.0.4:::::::*
	cpe:2.3:a:php:php:4.0.5:::::::*
	cpe:2.3:a:php:php:4.0.6:::::::*
	cpe:2.3:a:php:php:4.1.0:::::::*
	cpe:2.3:a:php:php:4.1.2:::::::*

No data.

References

Link	Providers
http://marc.info/?l=bugtraq&m=101286577109716&w=2
http://marc.info/?l=bugtraq&m=101304702002321&w=2
http://marc.info/?l=ntbugtraq&m=101285016125377&w=2
http://marc.info/?l=ntbugtraq&m=101303065423534&w=2
http://marc.info/?l=ntbugtraq&m=101303819613337&w=2
http://www.iss.net/security_center/static/8105.php
http://www.securityfocus.com/bid/4026

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2002-05-03T04:00:00

Updated: 2024-08-08T02:42:28.924Z

Reserved: 2002-05-01T00:00:00

Link: CVE-2002-0229

Vulnrichment

No data.

NVD

Status : Modified

Published: 2002-05-16T04:00:00.000

Modified: 2024-11-20T23:38:36.313

Link: CVE-2002-0229

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-02-03T00:00:00", "descriptions": [{"lang": "en", "value": "Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using \"LOAD DATA INFILE LOCAL\" SQL statements."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-10-17T13:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20020206 DW020203-PHP clarification", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=101303819613337&w=2"}, {"name": "20020205 Re: PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=101303065423534&w=2"}, {"name": "20020206 DW020203-PHP clarification", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=101304702002321&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=101286577109716&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ"], "url": "http://marc.info/?l=ntbugtraq&m=101285016125377&w=2"}, {"name": "php-mysql-safemode-bypass(8105)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/8105.php"}, {"name": "4026", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/4026"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-0229", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using \"LOAD DATA INFILE LOCAL\" SQL statements."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20020206 DW020203-PHP clarification", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=101303819613337&w=2"}, {"name": "20020205 Re: PHP Safe Mode Filesystem Circumvention Problem", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=101303065423534&w=2"}, {"name": "20020206 DW020203-PHP clarification", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=101304702002321&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=101286577109716&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "refsource": "NTBUGTRAQ", "url": "http://marc.info/?l=ntbugtraq&m=101285016125377&w=2"}, {"name": "php-mysql-safemode-bypass(8105)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/8105.php"}, {"name": "4026", "refsource": "BID", "url": "http://www.securityfocus.com/bid/4026"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T02:42:28.924Z"}, "title": "CVE Program Container", "references": [{"name": "20020206 DW020203-PHP clarification", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=101303819613337&w=2"}, {"name": "20020205 Re: PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=101303065423534&w=2"}, {"name": "20020206 DW020203-PHP clarification", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=101304702002321&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=101286577109716&w=2"}, {"name": "20020203 PHP Safe Mode Filesystem Circumvention Problem", "tags": ["mailing-list", "x_refsource_NTBUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=ntbugtraq&m=101285016125377&w=2"}, {"name": "php-mysql-safemode-bypass(8105)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/8105.php"}, {"name": "4026", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/4026"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-0229", "datePublished": "2002-05-03T04:00:00", "dateReserved": "2002-05-01T00:00:00", "dateUpdated": "2024-08-08T02:42:28.924Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:php:php:3.0:*:*:*:*:*:*:*", "matchCriteriaId": "245C601D-0FE7-47E3-8304-6FF45E9567D6", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "691BB8BB-329A-4640-B758-7590C99B5E42", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E2BC4CCE-2774-463E-82EA-36CD442D3A7B", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C478024C-2FCD-463F-A75E-E04660AA9DF1", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "AC9C32F4-5102-4E9B-9F32-B24B65A5ED2F", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "A5BD99C0-E875-496E-BE5E-A8DCBD414B5C", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "1851ADE5-C70C-46E0-941A-6ADF7DB5C126", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "69DA3BA2-AF53-4C9D-93FA-0317841595B1", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "FB0CFEE5-2274-4BBC-A24A-3A0D13F607FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.9:*:*:*:*:*:*:*", "matchCriteriaId": "67B59D6A-7EDA-4C34-81D6-C2557C85D164", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.10:*:*:*:*:*:*:*", "matchCriteriaId": "AEBA40B6-8FDF-41AA-8166-F491FF7F3118", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.11:*:*:*:*:*:*:*", "matchCriteriaId": "E74E2B72-A428-4BB3-B6F8-0AF5E487A807", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.12:*:*:*:*:*:*:*", "matchCriteriaId": "1E2F1D82-8E6A-4FBF-9055-A0F395DC17FA", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.13:*:*:*:*:*:*:*", "matchCriteriaId": "945FF149-3446-4905-BCA1-C397E3497B58", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:3.0.16:*:*:*:*:*:*:*", "matchCriteriaId": "80E31CC6-9356-4BB7-9F49-320AAF341E1E", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "EDBEC461-D553-41B7-8D85-20B6A933C21C", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "78BAA18C-E5A0-4210-B64B-709BBFF31EEC", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.1:patch2:*:*:*:*:*:*", "matchCriteriaId": "37896E87-95C2-4039-8362-BC03B1C56706", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "57B59616-A309-40B4-94B1-50A7BC00E35C", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "0F39A1B1-416E-4436-8007-733B66904A14", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "DD5FC218-3DDB-4981-81C9-6C69F8DA6F4D", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "FC2E5F96-66D2-4F99-A74D-6A2305EE218E", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "6713614A-B14E-4A85-BF89-ED780068FC68", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:4.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "069EB7EE-06B9-454F-9007-8DE5DCA33C53", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Safe Mode feature (safe_mode) in PHP 3.0 through 4.1.0 allows attackers with access to the MySQL database to bypass Safe Mode access restrictions and read arbitrary files using \"LOAD DATA INFILE LOCAL\" SQL statements."}, {"lang": "es", "value": "La caracter\u00edstica de Modo Seguro (safe_mode) de PHP 3.0 a 4.1.0 permite a atacantes con acceso a la base de datos MySQL evadir las restricciones del Modo Seguro y leer ficheros arbitrarios usando sentencias SQL \"LOAD DATA INFILE LOCAL\"."}], "id": "CVE-2002-0229", "lastModified": "2024-11-20T23:38:36.313", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-05-16T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=101286577109716&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=101304702002321&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=101285016125377&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=101303065423534&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=ntbugtraq&m=101303819613337&w=2"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/8105.php"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/4026"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=101286577109716&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=101304702002321&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=ntbugtraq&m=101285016125377&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=ntbugtraq&m=101303065423534&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=ntbugtraq&m=101303819613337&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://www.iss.net/security_center/static/8105.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/4026"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}