Lucene search

K
amazon
AmazonALAS-2012-077
HistoryMay 09, 2012 - 2:54 p.m.

Critical: php

2012-05-0914:54:00
alas.aws.amazon.com
24

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

Issue Overview:

A flaw was found in the way the php-cgi executable processed command line arguments when running in CGI mode. A remote attacker could send a specially-crafted request to a PHP script that would result in the query string being parsed by php-cgi as command line options and arguments. This could lead to the disclosure of the script’s source code or arbitrary code execution with the privileges of the PHP interpreter. (CVE-2012-1823)

Affected Packages:

php

Issue Correction:
Run yum update php to update your system.

New Packages:

i686:  
    php-dba-5.3.13-1.20.amzn1.i686  
    php-process-5.3.13-1.20.amzn1.i686  
    php-mysql-5.3.13-1.20.amzn1.i686  
    php-xml-5.3.13-1.20.amzn1.i686  
    php-pdo-5.3.13-1.20.amzn1.i686  
    php-snmp-5.3.13-1.20.amzn1.i686  
    php-mbstring-5.3.13-1.20.amzn1.i686  
    php-devel-5.3.13-1.20.amzn1.i686  
    php-xmlrpc-5.3.13-1.20.amzn1.i686  
    php-mssql-5.3.13-1.20.amzn1.i686  
    php-soap-5.3.13-1.20.amzn1.i686  
    php-odbc-5.3.13-1.20.amzn1.i686  
    php-bcmath-5.3.13-1.20.amzn1.i686  
    php-5.3.13-1.20.amzn1.i686  
    php-mcrypt-5.3.13-1.20.amzn1.i686  
    php-tidy-5.3.13-1.20.amzn1.i686  
    php-debuginfo-5.3.13-1.20.amzn1.i686  
    php-ldap-5.3.13-1.20.amzn1.i686  
    php-recode-5.3.13-1.20.amzn1.i686  
    php-fpm-5.3.13-1.20.amzn1.i686  
    php-common-5.3.13-1.20.amzn1.i686  
    php-imap-5.3.13-1.20.amzn1.i686  
    php-embedded-5.3.13-1.20.amzn1.i686  
    php-cli-5.3.13-1.20.amzn1.i686  
    php-pgsql-5.3.13-1.20.amzn1.i686  
    php-intl-5.3.13-1.20.amzn1.i686  
    php-mysqlnd-5.3.13-1.20.amzn1.i686  
    php-pspell-5.3.13-1.20.amzn1.i686  
    php-gd-5.3.13-1.20.amzn1.i686  
  
src:  
    php-5.3.13-1.20.amzn1.src  
  
x86_64:  
    php-snmp-5.3.13-1.20.amzn1.x86_64  
    php-mcrypt-5.3.13-1.20.amzn1.x86_64  
    php-5.3.13-1.20.amzn1.x86_64  
    php-devel-5.3.13-1.20.amzn1.x86_64  
    php-dba-5.3.13-1.20.amzn1.x86_64  
    php-mssql-5.3.13-1.20.amzn1.x86_64  
    php-process-5.3.13-1.20.amzn1.x86_64  
    php-imap-5.3.13-1.20.amzn1.x86_64  
    php-pspell-5.3.13-1.20.amzn1.x86_64  
    php-bcmath-5.3.13-1.20.amzn1.x86_64  
    php-common-5.3.13-1.20.amzn1.x86_64  
    php-xml-5.3.13-1.20.amzn1.x86_64  
    php-odbc-5.3.13-1.20.amzn1.x86_64  
    php-debuginfo-5.3.13-1.20.amzn1.x86_64  
    php-xmlrpc-5.3.13-1.20.amzn1.x86_64  
    php-fpm-5.3.13-1.20.amzn1.x86_64  
    php-cli-5.3.13-1.20.amzn1.x86_64  
    php-pgsql-5.3.13-1.20.amzn1.x86_64  
    php-mbstring-5.3.13-1.20.amzn1.x86_64  
    php-ldap-5.3.13-1.20.amzn1.x86_64  
    php-recode-5.3.13-1.20.amzn1.x86_64  
    php-intl-5.3.13-1.20.amzn1.x86_64  
    php-soap-5.3.13-1.20.amzn1.x86_64  
    php-mysqlnd-5.3.13-1.20.amzn1.x86_64  
    php-tidy-5.3.13-1.20.amzn1.x86_64  
    php-mysql-5.3.13-1.20.amzn1.x86_64  
    php-pdo-5.3.13-1.20.amzn1.x86_64  
    php-embedded-5.3.13-1.20.amzn1.x86_64  
    php-gd-5.3.13-1.20.amzn1.x86_64  

Additional References

Red Hat: CVE-2012-1823

Mitre: CVE-2012-1823

How to protect your server from attacks?

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

Related for ALAS-2012-077