Impact
The tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under
www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host.
Patches
The issue is fixed in version 8.0.
Workarounds
Disallow executing PHP scripts in (/var/lib/ldap-account-manager/)tmp directory.
For more information
If you have any questions or comments about this advisory:
Credits
Impact
The tmp directory, which is accessible by /lam/tmp/, allows interpretation of .php (and .php5/.php4/.phpt/etc) files. An attacker capable of writing files under
www-data privileges can write a web-shell into this directory, and gain a Code Execution on the host.
Patches
The issue is fixed in version 8.0.
Workarounds
Disallow executing PHP scripts in (/var/lib/ldap-account-manager/)tmp directory.
For more information
If you have any questions or comments about this advisory:
Credits