F5SOL15866

HistoryNov 26, 2014 - 12:00 a.m.

SOL15866 - Multiple PHP vulnerabilities CVE-2014-3668, CVE-2014-3669, and CVE-2014-3670

2014-11-2600:00:00

support.f5.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.944 High

EPSS

Percentile

99.0%

JSON

Recommended Action

None

Supplemental Information

SOL9970: Subscribing to email notifications regarding F5 products
SOL9957: Creating a custom RSS feed to view new and updated documents
SOL4602: Overview of the F5 security vulnerability response policy
SOL4918: Overview of the F5 critical issue hotfix policy

References

support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html

support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html

support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html

support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html

nessus 39

gentoo 1

openvas 28

threatpost 1

securityvulns 5

debian 3

ibm 2

f5 1

amazon 2

slackware 1

oraclelinux 4

ubuntu 1

redhat 6

osv 2

centos 3

mageia 1

veracode 7

prion 3

hackerone 2

ubuntucve 3

cve 3

fedora 3

checkpoint_advisories 2

suse 1

kitploit 1

rosalinux 1

nessus

Slackware 14.0 / 14.1 / current : php (SSA:2014-307-03)

2014-11-04 00:00:00

openSUSE Security Update : php5 (openSUSE-SU-2014:1377-1)

2014-11-11 00:00:00

PHP 5.6.x < 5.6.2 Multiple Vulnerabilities

2019-01-09 00:00:00

gentoo

PHP: Multiple vulnerabilities

2014-11-09 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2014:1441-1)

2021-06-09 00:00:00

Slackware: Security Advisory (SSA:2014-307-03)

2022-04-21 00:00:00

Amazon Linux: Security Advisory (ALAS-2014-435)

2015-09-08 00:00:00

threatpost

PHP Patches Buffer Overflow Vulnerabilities

2014-10-22 13:33:23

securityvulns

PHP memory corruption

2014-11-03 00:00:00

[USN-2391-1] php5 vulnerabilities

2014-11-03 00:00:00

[ MDVSA-2014:202 ] php

2014-10-27 00:00:00

debian

[SECURITY] [DSA 3064-1] php5 security update

2014-11-04 16:08:18

[SECURITY] [DSA 3064-1] php5 security update

2014-11-04 16:08:18

[SECURITY] [DLA 94-1] php5 security update

2014-11-25 21:53:34

ibm

Security Bulletin: Multiple vulnerabilities in php affect IBM Flex System Manager (FSM): (CVE-2014-3668, CVE-2014-3669 and CVE-2014-3670)

2019-01-31 01:45:01

Security Bulletin: IBM BladeCenter Advanced Management Module is affected by PHP vulnerability (CVE-2014-3669)

2019-01-31 01:45:01

K15866 : Multiple PHP vulnerabilities CVE-2014-3668, CVE-2014-3669, and CVE-2014-3670

2014-11-26 00:00:00

amazon

Important: php55

2014-10-28 17:10:00

Important: php54

2014-10-28 17:09:00

slackware

[slackware-security] php

2014-11-04 01:25:39

oraclelinux

php53 security update

2014-10-30 00:00:00

php security update

2014-10-30 00:00:00

php security update

2014-11-06 00:00:00

ubuntu

php5 vulnerabilities

2014-10-30 00:00:00

redhat

(RHSA-2014:1768) Important: php53 security update

2014-10-30 00:00:00

(RHSA-2014:1767) Important: php security update

2014-10-30 00:00:00

(RHSA-2015:0021) Important: php security update

2015-01-08 00:00:00

osv

php5 - security update

2014-11-25 00:00:00

php5 - security update

2014-11-04 00:00:00

centos

php53 security update

2014-10-31 14:37:09

php security update

2014-10-31 13:14:51

php security update

2014-11-06 18:30:07

mageia

Updated php packages fix security vulnerabilities

2014-10-28 14:33:36

veracode

Memory Corruption And Code Execution

2019-05-02 05:13:12

Denial Of Service (DoS)

2019-01-15 09:02:38

Arbitrary Code Execution

2019-05-02 05:04:21

prion

Buffer overflow

2014-10-29 10:55:00

Memory corruption

2014-10-29 10:55:00

Integer overflow

2014-10-29 10:55:00

hackerone

Internet Bug Bounty: AddressSanitizer reports a global buffer overflow in mkgmtime() function

2015-09-16 00:00:00

Internet Bug Bounty: Integer overflow in unserialize() (32-bits only)

2015-09-18 00:00:00

ubuntucve

CVE-2014-3668

2014-10-29 00:00:00

CVE-2014-3670

2014-10-29 00:00:00

CVE-2014-3669

2014-10-29 00:00:00

cve

CVE-2014-3668

2014-10-29 10:55:00

CVE-2014-3669

2014-10-29 10:55:00

CVE-2014-3670

2014-10-29 10:55:00

fedora

[SECURITY] Fedora 21 Update: php-5.6.2-1.fc21

2014-11-01 16:41:03

[SECURITY] Fedora 20 Update: php-5.5.18-1.fc20

2014-10-23 06:23:25

[SECURITY] Fedora 19 Update: php-5.5.18-1.fc19

2014-10-28 06:35:04

checkpoint_advisories

PHP Core unserialize Function Integer Overflow (CVE-2014-3669)

2014-11-25 00:00:00

PHP exif Extension exif_ifd_make_value Thumbnail Heap Buffer Overflow (CVE-2014-3670)

2014-12-02 00:00:00

suse

Security update for php53 (important)

2016-06-21 13:08:17

kitploit

Radamsa - A General-Purpose Fuzzer

2024-03-25 11:30:00

rosalinux

Advisory ROSA-SA-2021-1950

2021-07-02 17:57:45

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
OpenSource

@2024 Vulners Inc

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.944 High

EPSS

Percentile

99.0%

JSON

Related for SOL15866