Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2007-2022 Tenable Network Security, Inc.PHP_5_2_5.NASL
HistoryNov 12, 2007 - 12:00 a.m.

PHP < 5.2.5 Multiple Vulnerabilities

2007-11-1200:00:00
This script is Copyright (C) 2007-2022 Tenable Network Security, Inc.
www.tenable.com
96
JSON

According to its banner, the version of PHP installed on the remote host is older than 5.2.5. Such versions may be affected by various issues, including but not limited to several buffer overflows.

#%NASL_MIN_LEVEL 70300
#
# (C) Tenable Network Security, Inc.
#

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(28181);
  script_version("1.22");
  script_set_attribute(attribute:"plugin_modification_date", value:"2022/04/11");

  script_cve_id(
    "CVE-2007-3996",
    "CVE-2007-4782",
    "CVE-2007-4783",
    "CVE-2007-4784",
    "CVE-2007-4825",
    "CVE-2007-4840",
    "CVE-2007-4887",
    "CVE-2007-4889",
    "CVE-2007-5447",
    "CVE-2007-5653",
    "CVE-2007-5898",
    "CVE-2007-5899",
    "CVE-2007-5900",
    "CVE-2008-2107",
    "CVE-2008-2108",
    "CVE-2008-4107"
  );
  script_bugtraq_id(26403, 69246);

  script_name(english:"PHP < 5.2.5 Multiple Vulnerabilities");

  script_set_attribute(attribute:"synopsis", value:
"The remote web server uses a version of PHP that is affected by
multiple flaws.");
  script_set_attribute(attribute:"description", value:
"According to its banner, the version of PHP installed on the remote
host is older than 5.2.5.  Such versions may be affected by various
issues, including but not limited to several buffer overflows.");
  script_set_attribute(attribute:"see_also", value:"http://www.php.net/releases/5_2_5.php");
  script_set_attribute(attribute:"solution", value:
"Upgrade to PHP version 5.2.5 or later.");
  script_set_cvss_base_vector("CVSS2#AV:L/AC:M/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:POC/RL:OF/RC:C");

  script_set_attribute(attribute:"exploitability_ease", value:"No exploit is required");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_cwe_id(20, 22, 78, 94, 189, 200, 264);

  script_set_attribute(attribute:"vuln_publication_date", value:"2007/09/10");
  script_set_attribute(attribute:"plugin_publication_date", value:"2007/11/12");

  script_set_attribute(attribute:"plugin_type", value:"remote");
  script_set_attribute(attribute:"cpe", value:"cpe:/a:php:php");
  script_set_attribute(attribute:"thorough_tests", value:"true");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"CGI abuses");

  script_copyright(english:"This script is Copyright (C) 2007-2022 Tenable Network Security, Inc.");

  script_dependencies("php_version.nasl");
  script_require_keys("www/PHP");
  script_require_ports("Services/www", 80);

  exit(0);
}


include("global_settings.inc");
include("misc_func.inc");
include("http.inc");
include("audit.inc");
include("webapp_func.inc");

port = get_http_port(default:80, php:TRUE);

php = get_php_from_kb(
  port : port,
  exit_on_fail : TRUE
);

version = php["ver"];
source = php["src"];

backported = get_kb_item('www/php/'+port+'/'+version+'/backported');

if (report_paranoia < 2 && backported)
  audit(AUDIT_BACKPORT_SERVICE, port, "PHP "+version+" install");

if (version =~ "^5\.[01]\." ||
    version =~ "^5\.2\.[0-4]($|[^0-9])"
) 
{
  if (report_verbosity > 0)
  {
    report =
      '\n  Version source     : '+source +
      '\n  Installed version  : '+version+
      '\n  Fixed version      : 5.2.5\n';
    security_warning(port:port, extra:report);
  }
  else security_warning(port);
  exit(0);
}
else audit(AUDIT_LISTEN_NOT_VULN, "PHP", port, version);
VendorProductVersionCPE
phpphpcpe:/a:php:php

References

Related

openvas 58
securityvulns 3
redhat 5
nessus 32
oraclelinux 2
centos 3
fedora 3
cve 19
prion 19
ubuntucve 18
ubuntu 4
suse 1
redhatcve 4
slackware 1
freebsd 2
seebug 2
gentoo 1
veracode 6
debiancve 4
owncloud 2
patchstack 1
osv 2
debian 5
f5 2
openvas
openvas
PHP < 5.2.5 Multiple Vulnerabilities
2012-06-21 00:00:00
PHP < 5.2.5 Multiple Vulnerabilities
2020-08-17 00:00:00
HP-UX Update for Apache With PHP HPSBUX02332
2009-05-05 00:00:00
securityvulns
securityvulns
rPSA-2007-0242-1 php5 php5-cgi php5-mysql php5-pear php5-pgsql php5-soap php5-xsl
2007-11-20 00:00:00
PHP multiple Denial of Service conditions
2007-11-20 00:00:00
PHP multiple security vulnerabilities
2008-01-04 00:00:00
redhat
redhat
(RHSA-2008:0545) Moderate: php security and bug fix update
2008-07-16 00:00:00
(RHSA-2008:0582) Moderate: php security update
2008-07-22 00:00:00
(RHSA-2008:0544) Moderate: php security update
2008-07-16 00:00:00
nessus
nessus
Oracle Linux 3 / 5 : php (ELSA-2008-0544)
2013-07-12 00:00:00
RHEL 4 : php (RHSA-2008:0545)
2008-07-16 00:00:00
RHEL 3 / 5 : php (RHSA-2008:0544)
2008-07-16 00:00:00
oraclelinux
oraclelinux
php security update
2008-07-16 00:00:00
php security and bug fix update
2008-07-16 00:00:00
centos
centos
php security update
2008-07-16 16:15:51
php security update
2008-07-16 16:10:52
php security update
2008-07-18 05:00:21
fedora
fedora
[SECURITY] Fedora 8 Update: php-5.2.6-2.fc8
2008-06-20 19:08:56
[SECURITY] Fedora 9 Update: php-5.2.6-2.fc9
2008-07-26 06:03:23
[SECURITY] Fedora 9 Update: php-5.2.6-2.fc9
2008-06-20 19:09:41
cve
cve
CVE-2008-4107
2008-09-18 17:59:00
CVE-2007-5653
2007-10-23 21:47:00
CVE-2007-4887
2007-09-14 00:17:00
prion
prion
Default credentials
2008-09-18 17:59:00
Directory traversal
2007-09-12 01:17:00
Design/Logic Flaw
2007-09-14 00:17:00
ubuntucve
ubuntucve
CVE-2008-4107
2008-09-18 00:00:00
CVE-2007-4825
2007-09-12 00:00:00
CVE-2007-4887
2007-09-14 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2008-07-23 00:00:00
GD library vulnerability
2007-12-18 00:00:00
PHP vulnerabilities
2009-02-12 00:00:00
suse
suse
remote code execution in php4, php5
2008-01-29 14:18:48
redhatcve
redhatcve
CVE-2007-4887
2015-10-30 10:15:25
CVE-2007-4783
2015-10-30 09:31:18
CVE-2007-4889
2015-10-30 09:54:31
slackware
slackware
[slackware-security] php
2007-11-11 00:06:23
freebsd
freebsd
php -- multiple security vulnerabilities
2007-11-08 00:00:00
wordpress -- remote privilege escalation
2008-09-08 00:00:00
seebug
seebug
PHP 5.2.5之前版本多个安全漏洞
2007-11-14 00:00:00
PHP libgd实现多个函数整数溢出漏洞
2007-09-05 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2007-10-07 00:00:00
veracode
veracode
Information Disclosure
2020-04-10 00:22:32
Cross-site Scripting (XSS)
2020-04-10 00:22:31
Denial Of Service (DoS)
2020-04-10 00:22:29
debiancve
debiancve
CVE-2007-4840
2007-09-12 20:17:00
CVE-2007-3996
2007-09-04 18:17:00
CVE-2008-4106
2008-09-18 17:59:00
owncloud
owncloud
Server: Insufficiently random values
2012-08-10 11:42:22
Insufficiently random values - ownCloud
2012-08-10 17:04:28
patchstack
patchstack
WordPress <= 2.6.1 - SQL Truncation Vulnerability #1
2008-09-15 00:00:00
osv
osv
php5 - several vulnerabilities
2009-05-04 00:00:00
php5 several issues
2008-01-23 00:00:00
debian
debian
[SECURITY] [DSA 1444-2] New php5 packages fix regression
2008-01-23 21:29:45
[SECURITY] [DSA 1789-1] New php5 packages fix several vulnerabilities
2009-05-04 20:57:57
[SECURITY] [DSA 1444-1] New php5 packages fix several vulnerabilities
2008-01-03 20:25:59
f5
f5
SOL15885 - GNU C Library vulnerability CVE-2011-1071
2014-11-27 00:00:00
K15885 : GNU C Library vulnerability CVE-2011-1071
2015-06-13 00:00:00
JSON
Related for PHP_5_2_5.NASL
openvas58securityvulns3redhat5nessus32oraclelinux2centos3fedora3cve19prion19ubuntucve18ubuntu4suse1redhatcve4slackware1freebsd2seebug2gentoo1veracode6debiancve4owncloud2patchstack1osv2debian5f52