CVE-2006-7204

Low

2.1/10

Summary

The imap_body function in PHP before 4.4.4 does not implement safemode or open_basedir checks, which allows local users to read arbitrary files or list arbitrary directory contents.

Access Complexity: LOW
AccessVector: LOCAL
Authentication: NONE
Integrity Impact: NONE
Confidentiality Impact: PARTIAL
Availability Impact: NONE

References

Advisory Timeline

Published May 22, 2007

CVE-2006-7204

Summary

References

Advisory Timeline

ChainJacking

JetBrains IDE

KICS SaaS