PHP < 4.3.10 / 5.0.3 Multiple Vulnerabilities

2004-12-1000:00:00

Tenable

www.tenable.com

JSON

The remote host is running a version of PHP which is older than 5.0.3 or 4.3.10.
The remote version of this software is vulnerable to various security issues that may, under certain circumstances, allow attackers to execute arbitrary code on the remote host, provided that they can pass arbitrary data to some functions or bypass safe_mode.

Binary data 2460.prm

VendorProductVersionCPE
phpphpcpe:/a:php:php

Vendor	Product	Version	CPE
php	php		cpe:/a:php:php

References

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1018

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1019

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1020

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1063

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1064

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-1065

www.php.net/ChangeLog-4.php#4.3.10

www.php.net/ChangeLog-5.php#5.0.3

JSON