Lucene search
F5F5:K13231HistorySep 09, 2013 - 12:00 a.m.
K13231 : PHP vulnerability CVE-2009-2626
2013-09-0900:00:00
my.f5.com
16
5.6 Medium
AI Score
Confidence
Low
Security Advisory Description
In PHP 5.3.0 and PHP 5.2.10 and earlier, the zend_restore_ini_entry_cb function inzend_ini.callows context-specific attackers to obtain sensitive information (memory contents) and causes PHP to fail by using theini_setfunction to declare a variable, and then using theini_restore function to restore the variable.
Impact
None.
Related
packetstorm
packetstorm
PHP ini_restore Memory Disclosure
2009-12-04 00:00:00
f5
f5
SOL13231 - PHP vulnerability CVE-2009-2626
2011-11-21 00:00:00
seebug
seebug
PHP ini_restore()ĺ
ĺ俥ćŻćłé˛ćźć´
2009-11-30 00:00:00
ubuntucve
ubuntucve
CVE-2009-2626
2009-12-01 00:00:00
cve
cve
CVE-2009-2626
2009-12-01 16:30:00
prion
prion
Information disclosure
2009-12-01 16:30:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2010:008)
2010-01-18 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : php5 vulnerabilities (USN-882-1)
2010-01-14 00:00:00
Debian DSA-1940-1 : php5 - multiple issues
2010-02-24 00:00:00
openvas
openvas
PHP Multiple Vulnerabilities (Dec 2009)
2009-12-04 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-01-13 00:00:00
debian
debian
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
osv
osv
php5 - multiple issues
2009-11-25 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2010-01-05 00:00:00