Local File Overwrite Vulnerability in PHP 5.5.13 and Earlier

Local File Overwrite Vulnerability in PHP 5.5.13 and Earlier

CVE-2014-3981 · LOW Severity

AV:L/AC:M/AU:N/C:N/I:P/A:P

acinclude.m4, as used in the configure script in PHP 5.5.13 and earlier, allows local users to overwrite arbitrary files via a symlink attack on the /tmp/phpglibccheck file.

Learn more about our User Device Pen Test.