Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nessusThis script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.WEB_APPLICATION_SCANNING_98842
HistoryJan 09, 2019 - 12:00 a.m.

PHP 7.x < 7.0.2 Multiple Vulnerabilities

2019-01-0900:00:00
This script is Copyright (C) 2019-2024 and is owned by Tenable, Inc. or an Affiliate thereof.
www.tenable.com
15
JSON

According to its banner, the version of PHP running on the remote host is 7.x prior to 7.0.2. It is, therefore, affected by multiple vulnerabilities :

  • An out-of-bounds read error exists in the gdImageRotateInterpolated() function in file gd_interpolation.c when handling background colors. A remote attacker can exploit this to disclose memory contents or crash the application. (CVE-2016-1903)

  • An integer overflow condition exists in file exec.c in the escapeshellarg() and escapeshellcmd() functions due to a failure to properly validate user-supplied string input. A remote attacker can exploit this to cause a heap-based overflow, resulting in a denial of service or the execution of arbitrary code. (CVE-2016-1904)

  • A use-after-free error exists in file wddx.c in the php_wddx_pop_element() function when handling WDDX packet deserialization. A remote attacker can exploit this, by dereferencing already freed memory, to execute arbitrary code.

  • A type confusion flaw exists in file xmlrpc-epi-php.c in the PHP_to_XMLRPC_worker() function. A remote attacker can exploit this to disclose memory contents, crash the application process, or have other impact.

  • A type confusion flaw exists in file wddx.c when handling WDDX packet deserialization. A remote attacker can exploit this to execute arbitrary code.

  • An unspecified flaw exists in file fpm_log.c in the fpm_log_write() function when handling very long HTTP requests. A local attacker can exploit this to obtain sensitive information, via access to the access log file.

  • A flaw exists in file lsapilib.c when handling requests due to the LSAPI module failing to clear its secrets in child processes. A remote attacker can exploit this to gain access to memory contents, resulting in the disclosure of sensitive information.

  • A flaw exists in file lsapilib.c in the parseRequest() function due to a failure to properly sanitize input passed through multiple, unspecified parameters. A remote attacker can exploit this to cause a denial of service.

Note that the scanner has not tested for these issues but has instead relied only on the application’s self-reported version number.

No source data
VendorProductVersionCPE
phpphp*cpe:2.3:a:php:php:*:*:*:*:*:*:*:*

Related

archlinux 1
f5 2
nessus 11
openvas 8
amazon 1
debiancve 2
cve 2
ubuntucve 2
prion 2
openwrt 4
mageia 1
kaspersky 2
slackware 1
ubuntu 2
veracode 57
redhat 1
rosalinux 1
oracle 1
archlinux
archlinux
php: multiple issues
2016-01-14 00:00:00
f5
f5
SOL59722044 - PHP vulnerabilities CVE-2016-1903 and CVE-2016-1904
2016-03-07 00:00:00
K59722044 : PHP vulnerabilities CVE-2016-1903 and CVE-2016-1904
2016-03-08 00:00:00
nessus
nessus
PHP 7.x < 7.0.2 Multiple Vulnerabilities
2016-02-10 00:00:00
Amazon Linux AMI : php56 / php55 (ALAS-2016-640)
2016-01-19 00:00:00
PHP 5.5.x < 5.5.31 / 5.6.x < 5.6.17 / 7.0.x < 7.0.2 Multiple Vulnerabilities
2016-01-29 00:00:00
openvas
openvas
PHP Out of Bounds Read Memory Corruption Vulnerability - 01 - Mar16 (Windows)
2016-03-01 00:00:00
PHP Multiple Integer Overflow Vulnerabilities - Mar16 (Windows)
2016-03-01 00:00:00
Mageia Linux Local Check: mgasa-2016-0024
2016-01-18 00:00:00
amazon
amazon
Medium: php56, php55
2016-01-18 11:00:00
debiancve
debiancve
CVE-2016-1903
2016-01-19 05:59:00
CVE-2016-1904
2016-01-19 05:59:00
cve
cve
CVE-2016-1903
2016-01-19 05:59:00
CVE-2016-1904
2016-01-19 05:59:00
ubuntucve
ubuntucve
CVE-2016-1904
2016-01-19 00:00:00
CVE-2016-1903
2016-01-19 00:00:00
prion
prion
Out-of-bounds
2016-01-19 05:59:00
Integer overflow
2016-01-19 05:59:00
openwrt
openwrt
php: Security update (CVE-2016-1903)
2016-01-28 12:25:14
prosody: Security update (2 CVEs)
2016-01-28 12:25:32
php: Security update (7 CVEs)
2016-01-28 12:23:45
mageia
mageia
Updated php packages fix security vulnerability
2016-01-17 03:26:26
kaspersky
kaspersky
KLA10746 Multiple vulnerabilities in PHP
2016-01-19 00:00:00
KLA10747 Obsolete PHP version in XAMPP & WAMP
2016-01-19 00:00:00
slackware
slackware
[slackware-security] php
2016-02-04 00:07:13
ubuntu
ubuntu
PHP regression
2016-04-27 00:00:00
PHP vulnerabilities
2016-04-21 00:00:00
veracode
veracode
Denial Of Service (DoS) Through Memory Corruption
2019-05-02 06:02:24
Arbitrary Code Execution
2019-05-02 06:02:23
Denial Of Service (DoS)
2019-05-02 06:02:17
redhat
redhat
(RHSA-2016:2750) Moderate: rh-php56 security, bug fix, and enhancement update
2016-11-15 11:13:31
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
oracle
oracle
Oracle Critical Patch Update Advisory - January 2017
2017-01-17 00:00:00
JSON
Related for WEB_APPLICATION_SCANNING_98842
archlinux1f52nessus11openvas8amazon1debiancve2cve2ubuntucve2prion2openwrt4mageia1kaspersky2slackware1ubuntu2veracode57redhat1rosalinux1oracle1