Lucene search
Redhat.comRH:CVE-2009-3294HistoryOct 30, 2015 - 10:23 a.m.
CVE-2009-3294
2015-10-3010:23:06
redhat.com
access.redhat.com
2
The popen API function in TSRM/tsrm_win32.c in PHP before 5.2.11 and 5.3.x before 5.3.1, when running on certain Windows operating systems, allows context-dependent attackers to cause a denial of service (crash) via a crafted (1) “e” or (2) “er” string in the second argument (aka mode), possibly related to the _fdopen function in the Microsoft C runtime library. NOTE: this might not cross privilege boundaries except in rare cases in which the mode argument is accessible to an attacker outside of an application that uses the popen function.
Related
prion
prion
Cross site scripting
2009-09-22 10:30:00
cve
cve
CVE-2009-3294
2009-09-22 10:30:00
cvelist
cvelist
CVE-2009-3294
2009-09-22 10:00:00
openvas
openvas
PHP 'tsrm_win32.c' Denial Of Service Vulnerability - Windows
2009-09-29 00:00:00
PHP < 5.2.11 Multiple Vulnerabilities
2012-06-21 00:00:00
ubuntucve
ubuntucve
CVE-2009-3294
2009-09-22 00:00:00
seebug
seebug
PHP 5.2.11版本修复多个安全漏洞
2009-09-23 00:00:00
nessus
nessus
PHP < 5.2.11 Multiple Vulnerabilities
2009-09-18 00:00:00