Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
openvasCopyright (C) 2013 Greenbone AGOPENVAS:1361412562310866144
HistoryAug 01, 2013 - 12:00 a.m.

Fedora Update for php FEDORA-2013-12354

2013-08-0100:00:00
Copyright (C) 2013 Greenbone AG
plugins.openvas.org
17

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

JSON

The remote host is missing an update for the

# SPDX-FileCopyrightText: 2013 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only

if(description)
{
  script_oid("1.3.6.1.4.1.25623.1.0.866144");
  script_version("2023-06-22T10:34:15+0000");
  script_tag(name:"last_modification", value:"2023-06-22 10:34:15 +0000 (Thu, 22 Jun 2023)");
  script_tag(name:"creation_date", value:"2013-08-01 18:28:11 +0530 (Thu, 01 Aug 2013)");
  script_xref(name:"CISA", value:"Known Exploited Vulnerability (KEV) catalog");
  script_xref(name:"URL", value:"https://www.cisa.gov/known-exploited-vulnerabilities-catalog");
  script_cve_id("CVE-2013-4113", "CVE-2013-1643", "CVE-2013-1635", "CVE-2012-2143",
                "CVE-2012-2386", "CVE-2012-2311", "CVE-2012-2329", "CVE-2012-1823");
  script_tag(name:"cvss_base", value:"7.5");
  script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
  script_name("Fedora Update for php FEDORA-2013-12354");


  script_tag(name:"affected", value:"php on Fedora 17");
  script_tag(name:"solution", value:"Please install the updated package(s).");
  script_tag(name:"qod_type", value:"package");
  script_tag(name:"solution_type", value:"VendorFix");
  script_xref(name:"FEDORA", value:"2013-12354");
  script_xref(name:"URL", value:"https://lists.fedoraproject.org/pipermail/package-announce/2013-July/112246.html");
  script_tag(name:"summary", value:"The remote host is missing an update for the 'php'
  package(s) announced via the referenced advisory.");
  script_category(ACT_GATHER_INFO);
  script_copyright("Copyright (C) 2013 Greenbone AG");
  script_family("Fedora Local Security Checks");
  script_dependencies("gather-package-list.nasl");
  script_mandatory_keys("ssh/login/fedora", "ssh/login/rpms", re:"ssh/login/release=FC17");

  exit(0);
}

include("revisions-lib.inc");
include("pkg-lib-rpm.inc");

release = rpm_get_ssh_release();
if(!release)
  exit(0);

res = "";

if(release == "FC17")
{

  if ((res = isrpmvuln(pkg:"php", rpm:"php~5.4.17~2.fc17", rls:"FC17")) != NULL)
  {
    security_message(data:res);
    exit(0);
  }

  if (__pkg_match) exit(99);
  exit(0);
}

Related

openvas 78
fedora 23
nessus 50
freebsd 2
threatpost 2
suse 9
debian 3
prion 3
amazon 1
ubuntucve 4
cert 1
cve 3
ubuntu 1
securityvulns 4
slackware 1
osv 2
exploitdb 1
hackerone 1
attackerkb 1
packetstorm 1
checkpoint_advisories 2
metasploit 1
f5 2
redhat 1
centos 1
veracode 1
openvas
openvas
Fedora Update for php FEDORA-2013-12354
2013-08-01 00:00:00
Fedora Update for php FEDORA-2013-3927
2013-04-05 00:00:00
Fedora Update for php FEDORA-2013-10233
2013-06-24 00:00:00
fedora
fedora
[SECURITY] Fedora 17 Update: php-5.4.17-2.fc17
2013-07-23 01:17:30
[SECURITY] Fedora 17 Update: php-5.4.13-1.fc17
2013-04-03 04:38:44
[SECURITY] Fedora 17 Update: php-5.4.16-1.fc17
2013-06-23 05:58:52
nessus
nessus
Fedora 17 : maniadrive-1.2-40.fc17 / php-5.4.3-1.fc17 (2012-7628)
2012-05-29 00:00:00
FreeBSD : php -- multiple vulnerabilities (59b68b1e-9c78-11e1-b5e0-000c299b62e1)
2012-05-14 00:00:00
SuSE 11.2 / 11.3 Security Update : PHP5 (SAT Patch Numbers 8087 / 8088)
2013-08-10 00:00:00
freebsd
freebsd
php -- multiple vulnerabilities
2012-05-08 00:00:00
php5 -- Multiple vulnerabilities
2013-03-04 00:00:00
threatpost
threatpost
Another Set of PHP Releases Pushed Out to Fix CVE-2012-1823 Flaw
2012-05-09 14:32:23
PHP Group Releases New Versions, But Patch Doesn't Fix CVE-2012-1823 Bug
2012-05-04 14:26:46
suse
suse
Security update for PHP5 (important)
2013-08-09 23:04:16
Security update for PHP5 (important)
2013-08-01 00:04:12
Security update for PHP5 (important)
2013-08-09 23:04:20
debian
debian
[SECURITY] [DSA 2639-1] php5 security update
2013-03-05 17:22:41
[SECURITY] [DSA 2465-1] php5 security update
2012-05-09 17:23:53
[SECURITY] [DSA 2492-1] php5 security update
2012-06-10 16:30:45
prion
prion
Design/Logic Flaw
2012-05-11 10:15:00
Buffer overflow
2012-05-11 10:15:00
Integer overflow
2012-07-07 10:21:00
amazon
amazon
Medium: php
2012-07-05 16:09:00
ubuntucve
ubuntucve
CVE-2012-2311
2012-05-04 00:00:00
CVE-2012-1823
2012-05-03 00:00:00
CVE-2012-2329
2012-05-11 00:00:00
cert
cert
PHP-CGI query string parameter vulnerability
2012-05-03 00:00:00
cve
cve
CVE-2012-2311
2012-05-11 10:15:00
CVE-2012-2329
2012-05-11 10:15:00
CVE-2012-2386
2012-07-07 10:21:00
ubuntu
ubuntu
PHP vulnerability
2012-05-04 00:00:00
securityvulns
securityvulns
PHP securiy vulnerabilities
2013-03-02 00:00:00
[ MDVSA-2013:016 ] php
2013-03-02 00:00:00
[SECURITY] [DSA 2492-1] php5 security update
2012-06-13 00:00:00
slackware
slackware
php
2013-03-23 20:35:59
osv
osv
php5 - several vulnerabilities
2013-03-05 00:00:00
php5 - several
2012-05-09 00:00:00
exploitdb
exploitdb
Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution (Multithreaded Scanner) (2)
2013-11-01 00:00:00
hackerone
hackerone
Yahoo!: Out of date version
2014-03-30 08:47:50
attackerkb
attackerkb
CVE-2012-2329 PHP Apache Request Headers
2012-05-11 00:00:00
packetstorm
packetstorm
PHP apache_request_headers Function Buffer Overflow
2012-06-17 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP apache_request_headers Function Buffer Overflow (CVE-2012-2329)
2013-02-19 00:00:00
PHP php-cgi Query String Parameter Code Execution (CVE-2012-1823; CVE-2012-2311; CVE-2012-2335; CVE-2012-2336; CVE-2013-4878)
2012-05-14 00:00:00
metasploit
metasploit
Avoid underscore/tolower
2012-06-14 22:29:52
f5
f5
SOL15478 - PHP vulnerability CVE-2012-2386
2014-08-06 00:00:00
K15478 : PHP vulnerability CVE-2012-2386
2014-08-07 00:00:00
redhat
redhat
(RHSA-2012:1047) Moderate: php53 security update
2012-06-27 00:00:00
centos
centos
php53 security update
2012-06-27 20:24:26
veracode
veracode
XML External Entity (XXE)
2019-05-02 04:52:37

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.974 High

EPSS

Percentile

99.9%

JSON
Related for OPENVAS:1361412562310866144
openvas78fedora23nessus50freebsd2threatpost2suse9debian3prion3amazon1ubuntucve4cert1cve3ubuntu1securityvulns4slackware1osv2exploitdb1hackerone1attackerkb1packetstorm1checkpoint_advisories2metasploit1f52redhat1centos1veracode1