Red Hat Bugzilla – Bug 290591
CVE-2007-4889 php mysql extension safemode flaw
Last modified: 2007-09-14 06:35:06 EDT
Common Vulnerabilities and Exposures assigned an identifier CVE-2007-4889 to the following vulnerability:
The MySQL extension in PHP 5.2.4 and earlier allows remote attackers to bypass safe_mode and open_basedir restrictions via the MySQL (1) LOAD_FILE, (2) INTO DUMPFILE, and (3) INTO OUTFILE functions, a different issue than CVE-2007-3997.
*** This bug has been marked as a duplicate of 169857 ***