The libxml RSHUTDOWN function in PHP 5.x allows remote attackers to bypass the open_basedir protection mechanism and read arbitrary files via vectors involving a stream_close method call during use of a custom stream wrapper.
Max CVSS
5.0
EPSS Score
0.29%
Published
2014-02-15
Updated
2014-02-18
1 vulnerabilities found