Lucene search

K
freebsd
FreeBSD59B68B1E-9C78-11E1-B5E0-000C299B62E1
HistoryMay 08, 2012 - 12:00 a.m.

php -- multiple vulnerabilities

2012-05-0800:00:00
vuxml.freebsd.org
35

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

The PHP Development Team reports:

The release of PHP 5.4.13 and 5.4.3 complete a fix for the
vulnerability in CGI-based setups as originally described in
CVE-2012-1823. (CVE-2012-2311)
Note: mod_php and php-fpm are not vulnerable to this attack.
PHP 5.4.3 fixes a buffer overflow vulnerability in the
apache_request_headers() (CVE-2012-2329).

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchphp5< 5.4.3UNKNOWN
FreeBSDanynoarchphp53< 5.3.13UNKNOWN
FreeBSDanynoarchphp52< 5.2.17_9UNKNOWN
How to protect your server from attacks?

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

Related for 59B68B1E-9C78-11E1-B5E0-000C299B62E1