29 matches found
CVE-2009-4954
SQL injection vulnerability in the Versatile Calendar Extension VCE skcalendar extension before 0.3.4 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
EUVD-2009-4304
Malware in sbrugna...
EUVD-2009-4916
Malware in sbrugna...
EUVD-2008-3034
Malware in sbrugna...
EUVD-2009-4305
Malware in sbrugna...
EUVD-2025-21863
Malicious code in bioql PyPI...
EUVD-2011-1471
Malicious code in bioql PyPI...
Denial Of Service (DoS)
php is vulnerable to denial of service DoS. The vulnerability exists as an integer overflow flaw was found in the PHP calendar extension. A remote attacker able to make a PHP script call SdnToJulian with a large value could cause the PHP interpreter to crash...
PHP 5.6.x < 5.6.8 Multiple Vulnerabilities - Linux
PHP is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if description...
PHP calendar extension integer overflow vulnerability
PHP is a popular programming language. Multiple integer overflow vulnerabilities in the PHP calendar extension allow remote attackers to cause a denial of service attack by passing a specially crafted year value to the GregorianToSdn or JulianToSdn functions...
PHP Calendar Extension Remote Integer Overflow Vulnerability
PHP is a widely used general purpose scripting language. A remote integer overflow vulnerability exists in PHP Calendar Extension because it fails to fulfill sufficient bounds checks on user-supplied data. An attacker could exploit this vulnerability to execute arbitrary code in the context of th...
Scientific Linux Security Update : php on SL4.x i386/x86_64 (20120130)
PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. It was found that the hashing routine used by PHP arrays was susceptible to predictable hash collisions. If an HTTP POST request to a PHP application contained many parameters whose names map to the same hash...
CentOS Update for php53 CESA-2011:1423 centos5 x86_64
Check for the Version of php53 OpenVAS Vulnerability Test CentOS Update for php53 CESA-2011:1423 centos5 x8664 Authors: System Generated Check Copyright: Copyright c 2012 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
CentOS Update for php53 CESA-2011:1423 centos5 x86_64
The remote host is missing an update for the SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
PHP Calendar Extension “SdnToJulian()”远程整数溢出漏洞
BUGTRAQ ID: 46967 CVE ID: CVE-2011-1466 PHP是一种在电脑上运行的脚本语言,主要用途是在于处理动态网页,包含了命令行运行接口或者产生图形用户界面程序。 PHP 5.3.6之前版本的Calendar扩展中的SdnToJulian函数在实现上存在整数溢出漏洞,可使攻击者通过calfromjd函数的首个参数造成拒绝服务 0 PHP 5.3.x 厂商补丁: PHP --- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: http://www.php.net...
php security update
CentOS Errata and Security Advisory CESA-2012:0033 Updated php packages that fix several security issues are now available for Red Hat Enterprise Linux 5. The Red Hat Security Response Team has rated this update as having moderate security impact. Common Vulnerability Scoring System CVSS base...
php: Crash by converting serial day numbers (SDN) into Julian calendar
Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service application crash via a large integer in the first argument to the calfromjd function...
php: Crash by converting serial day numbers (SDN) into Julian calendar
Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service application crash via a large integer in the first argument to the calfromjd function...
USN-1126-1: PHP vulnerabilities
Stephane Chazelas discovered that the /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/. CVE-2011-0441 Raphael Geisert and Dan Rosenberg discovered that the PEAR installer allows local users to overwrite...
php <5.3.6 Calendar扩展SdnToJulian函数整数溢出漏洞
No description provided by source...