Lucene search

FreeBSDC623F058-10E7-11E0-BECC-0022156E8794

HistoryDec 13, 2010 - 12:00 a.m.

php-filter -- Denial of Service

2010-12-1300:00:00

vuxml.freebsd.org

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.078 Low

EPSS

Percentile

94.1%

JSON

The following DoS condition in filter extension
was fixed in PHP 5.3.4 and PHP 5.2.15:

Stack consumption vulnerability in the filter_var
function in PHP 5.2.x through 5.2.14 and 5.3.x through
5.3.3, when FILTER_VALIDATE_EMAIL mode is used, allows
remote attackers to cause a denial of service (memory
consumption and application crash) via a long e-mail
address string.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchphp5-filter< 5.3.4UNKNOWN
FreeBSDanynoarchphp52-filter< 5.2.15UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	php5-filter	< 5.3.4	UNKNOWN
FreeBSD	any	noarch	php52-filter	< 5.2.15	UNKNOWN

References

www.php.net/releases/5_2_15.php

www.php.net/releases/5_3_4.php

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.078 Low

EPSS

Percentile

94.1%

JSON

Related for C623F058-10E7-11E0-BECC-0022156E8794