10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.042 Low
EPSS
Percentile
92.1%
Multiple vulnerabilities have been found in PHP, including:
buffer overflows, stack overflows, format string, and
information disclosure vulnerabilities.
The session extension contained safe_mode and
open_basedir bypasses, but the FreeBSD Security
Officer does not consider these real security
vulnerabilities, since safe_mode and
open_basedir are insecure by design and should
not be relied upon.
OS | Version | Architecture | Package | Version | Filename |
---|---|---|---|---|---|
FreeBSD | any | noarch | php5-imap | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5-odbc | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5-session | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5-shmop | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5-sqlite | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5-wddx | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php5 | < 5.2.1_2 | UNKNOWN |
FreeBSD | any | noarch | php4-odbc | < 4.4.5 | UNKNOWN |
FreeBSD | any | noarch | php4-session | < 4.4.5 | UNKNOWN |
FreeBSD | any | noarch | php4-shmop | < 4.4.5 | UNKNOWN |