ID: 31305
Updated by: [EMAIL PROTECTED]
Reported By: pavel at msmu dot ru
-Status: Open
+Status: Bogus
Bug Type: cURL related
Operating System: Linux
PHP Version: 4.3.10
New Comment:
Please do not submit the same bug more than once. An existing
bug report already describes this very problem. Even if you feel
that your issue is somewhat different, the resolution is likely
to be the same.
Thank you for your interest in PHP.
Dup of #30609
Previous Comments:
------------------------------------------------------------------------
[2004-12-26 23:52:00] pavel at msmu dot ru
Description:
------------
It is possible to access a file which is outside directory specified in
open_basedir directive.
This bug is really easy to reproduce - just set some open_basedir and
try to read the contents of, for example, /etc/passwd
I didn't find this bug, I read about it on security-related web-site,
checked it, and it worked :(
Reproduce code:
---------------
<?php
$var1 = curl_init("file:///etc/passwd");
$anyfile=curl_exec($var1);
echo $anyfile
?>
Expected result:
----------------
I would expect an error in the log saying about open_basedir
restriction and access to the file being denied.
Actual result:
--------------
you'll get the contents of /etc/passwd
------------------------------------------------------------------------
--
Edit this bug report at http://bugs.php.net/?id=31305&edit=1
