Lucene search

PRIOn knowledge basePRION:CVE-2011-1464

HistoryMar 20, 2011 - 2:00 a.m.

Buffer overflow

2011-03-2002:00:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.022 Low

EPSS

Percentile

89.2%

JSON

Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, might allow context-dependent attackers to cause a denial of service (application crash) via a small numerical value in the argument.

CPENameOperatorVersion
phpeq4.3.9
phpeq4.4.9
phpeq3.0
phpeq5.2.9
phpeq4.0 beta1
phpeq3.0.5
phpeq3.0.11
phpeq5.2.4 windows
phpeq5.1.5
phpeq5.1.2

Name	Operator	Version
php	eq	4.3.9
php	eq	4.4.9
php	eq	3.0
php	eq	5.2.9
php	eq	4.0 beta1
php	eq	3.0.5
php	eq	3.0.11
php	eq	5.2.4 windows
php	eq	5.1.5
php	eq	5.1.2

Rows per page:

1-10 of 1101

References

bugs.php.net/bug.php?id=54055

www.mandriva.com/security/advisories?name=MDVSA-2011:052

www.mandriva.com/security/advisories?name=MDVSA-2011:053

www.php.net/archive/2011.php

www.php.net/ChangeLog-5.php

www.php.net/releases/5_3_6.php

www.vupen.com/english/advisories/2011/0744

marc.info/?l=bugtraq&m=133469208622507&w=2

7.1 High

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.022 Low

EPSS

Percentile

89.2%

JSON

Related for PRION:CVE-2011-1464