Description
The cURL library (libcurl) in PHP 4.4.2 and 5.1.4 allows attackers to bypass safe mode and read files via a file:// request containing null characters.
Remediation
References
Related Vulnerabilities
Drupal Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2007-5593)
Oracle Application Server CVE-2007-3854 Vulnerability (CVE-2007-3854)
WordPress Plugin Captcha by BestWebSoft Security Bypass (3.8.7)
WordPress Plugin VK All in One Expansion Unit Cross-Site Scripting (9.85.0.1)