CVE-2007-5424

NameCVE-2007-5424
DescriptionThe disable_functions feature in PHP 4 and 5 allows attackers to bypass intended restrictions by using an alias, as demonstrated by using ini_alter when ini_set is disabled.
SourceCVE (at NVD; CERT, LWN, oss-sec, fulldisc, bugtraq, EDB, Metasploit, Red Hat, Ubuntu, Gentoo, SUSE bugzilla/CVE, Mageia, GitHub code/issues, web search, more)
NVD severityhigh

The information below is based on the following data on fixed versions.

PackageTypeReleaseFixed VersionUrgencyOriginDebian Bugs
php4source(unstable)(unfixed)unimportant
php5source(unstable)(unfixed)unimportant

Notes

if the function is blacklisted but not its alias it is a configuration
issue of the site not a vulnerability in php

Search for package or bug name: Reporting problems