PHP 4.x < 4.4.4 / 5.x < 5.1.4 Multiple Vulnerabilities

2006-10-1200:00:00

Tenable

www.tenable.com

JSON

The remote host is running a version of PHP that is older than 4.4.4 or 5.1.5. This version is reported vulnerable to several flaws that may allow an attacker with the right to execute PHP scripts the ability to execute arbitrary code. Executed code would be run with the permissions of the web server process.

Binary data 3732.prm

VendorProductVersionCPE
phpphpcpe:/a:php:php

Vendor	Product	Version	CPE
php	php		cpe:/a:php:php

References

bugs.php.net/38112

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4481

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4482

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4483

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4484

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4485

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-4486

php.net/ChangeLog-4.php

php.net/ChangeLog-5.php

JSON