Lucene search

CVE-2012-2386

🗓️ 07 Jul 2012 10:00:00Reported by redhatType

Integer overflow in phar_parse_tarfile function in PHP before 5.3.14 and 5.4.x allows remote code execution via crafted tar fil

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 103
OpenVAS	PHP 'phar/tar.c' Heap Buffer Overflow Vulnerability - Windows	21 Mar 201300:00	–	openvas
OpenVAS	Debian: Security Advisory (DSA-2492-1)	10 Aug 201200:00	–	openvas
OpenVAS	Debian Security Advisory DSA 2492-1 (php5)	10 Aug 201200:00	–	openvas
OpenVAS	Mandriva Update for php MDVSA-2012:093 (php)	3 Aug 201200:00	–	openvas
OpenVAS	Fedora Update for maniadrive FEDORA-2012-9762	3 Jul 201200:00	–	openvas
OpenVAS	Fedora Update for maniadrive FEDORA-2012-9490	30 Aug 201200:00	–	openvas
OpenVAS	Fedora Update for maniadrive FEDORA-2012-9762	3 Jul 201200:00	–	openvas
OpenVAS	Fedora Update for php-eaccelerator FEDORA-2012-9762	3 Jul 201200:00	–	openvas
OpenVAS	Fedora Update for maniadrive FEDORA-2012-9490	30 Aug 201200:00	–	openvas
OpenVAS	Mandriva Update for php MDVSA-2012:093 (php)	3 Aug 201200:00	–	openvas

Source	Link
lists	www.lists.apple.com/archives/security-announce/2012/Sep/msg00004.html
php	www.php.net/ChangeLog-5.php
bugzilla	www.bugzilla.redhat.com/show_bug.cgi
git	www.git.php.net/
0x1byte	www.0x1byte.blogspot.com/2011/04/php-phar-extension-heap-overflow.html
bugs	www.bugs.php.net/bug.php
openwall	www.openwall.com/lists/oss-security/2012/05/22/10
lists	www.lists.opensuse.org/opensuse-security-announce/2012-07/msg00003.html
support	www.support.apple.com/kb/HT5501

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

07 Jul 2012 10:00Current

8High risk

Vulners AI Score8

EPSS0.14705