From: eugen at iwep dot ab dot ru
Operating system: FreeBSD
PHP version: 4.3.2
PHP Bug Type: Filesystem function related
Bug description: fopen SAFE faile
Description:
------------
I found bug? if i use SAFE MODE and function fopen I may show other
document diferent user, make rwxrw-rw attribute on public_html home
directrory
User1
public_html rwxrw-rw-
cack.php
$data="";M
$fp=fopen("../../User2/public_html/index.php","r");M
while(!feof($fp)){M
$data.=fread($fp,1024);
}M
fclose($fp);M
highlight_string($data);M
User2
public_html rwxr-xr-x
index.php
Reproduce code:
---------------
<?
$data="";M
$fp=fopen("../../User2/public_html/index.php","r");M
while(!feof($fp)){M
$data.=fread($fp,1024);
}M
fclose($fp);M
highlight_string($data);M
?>
--
Edit bug report at http://bugs.php.net/?id=24304&edit=1
--
Try a CVS snapshot: http://bugs.php.net/fix.php?id=24304&r=trysnapshot
Fixed in CVS: http://bugs.php.net/fix.php?id=24304&r=fixedcvs
Fixed in release: http://bugs.php.net/fix.php?id=24304&r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=24304&r=needtrace
Try newer version: http://bugs.php.net/fix.php?id=24304&r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=24304&r=support
Expected behavior: http://bugs.php.net/fix.php?id=24304&r=notwrong
Not enough info: http://bugs.php.net/fix.php?id=24304&r=notenoughinfo
Submitted twice: http://bugs.php.net/fix.php?id=24304&r=submittedtwice
register_globals: http://bugs.php.net/fix.php?id=24304&r=globals
PHP 3 support discontinued: http://bugs.php.net/fix.php?id=24304&r=php3
Daylight Savings: http://bugs.php.net/fix.php?id=24304&r=dst
IIS Stability: http://bugs.php.net/fix.php?id=24304&r=isapi
Install GNU Sed: http://bugs.php.net/fix.php?id=24304&r=gnused
