F5 Networks BIG-IP : Multiple PHP vulnerabilities (K13519)

PHP has been cited with the following multiple vulnerabilities, which may be locally exploitable on some F5 products : CVE-2006-7243 PHP before 5.3.4 accepts the \0 character in a pathname, which might allow context-dependent attackers to bypass intended access restrictions by placing a safe file...

openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:1138-1)

The blowfish password hashing implementation did not properly handle 8-characters in passwords, which made it easier for attackers to crack the hash CVE-2011-2483. After this update existing hashes with id '$2a$' for passwords that contain 8-bit characters will no longer be compatible with newly...

HP/HPE System Management Homepage (SMH) Multiple Vulnerabilities (HPSBMU02764)

HP/HPE System Management Homepage SMH is prone to multiple vulnerabilities. Copyright C 2012 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is...

Debian Security Advisory DSA 2408-1 (php5)

The remote host is missing an update to php5 announced via advisory DSA 2408-1. OpenVAS Vulnerability Test $Id: deb24081.nasl 6612 2017-07-07 12:08:03Z cfischer $ Description: Auto-generated from advisory DSA 2408-1 php5 Authors: Thomas Reinke Copyright: Copyright c 2012 E-Soft Inc...

Debian DSA-2408-1 : php5 - several vulnerabilities

Several vulnerabilities have been discovered in PHP, the web scripting language. The Common Vulnerabilities and Exposures project identifies the following issues : - CVE-2011-1072 It was discovered that insecure handling of temporary files in the PEAR installer could lead to denial of service. -...

Mac OS X Multiple Vulnerabilities (2012-001)

This host is missing an important security update according to Mac OS X Update/Mac OS X Security Update 2012-001. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...

Mac OS X Multiple Vulnerabilities (Security Update 2012-001) (BEAST)

The remote host is running a version of Mac OS X 10.6 that does not have Security Update 2012-001 applied. This update contains multiple security-related fixes for the following components : - Apache - ATS - ColorSync - CoreAudio - CoreMedia - CoreText - curl - Data Security - dovecot - filecmds ...

Ubuntu Update for php5 USN-1231-1

Ubuntu Update for Linux kernel vulnerabilities USN-1231-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN12311.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for php5 USN-1231-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This...

CVE-2011-3267

PHP before 5.3.7 does not properly implement the errorlog function, which allows context-dependent attackers to cause a denial of service application crash via unspecified vectors...

CVE-2011-3267

CVE-2011-3267 affects PHP before 5.3.7. The error_log function is not properly implemented, enabling context-dependent attackers to cause a denial of service (application crash) via unspecified vectors. The vulnerability is documented across multiple advisories (including F5 BIG-IP K13519) and op...

PHP 5.3 < 5.3.7 Multiple Vulnerabilities

According to its banner, the version of PHP 5.3.x running on the remote host is prior to 5.3.7. It is, therefore, affected by the following vulnerabilities : - A use-after-free vulnerability in substrreplace. CVE-2011-1148 - A stack-based buffer overflow in socketconnect. CVE-2011-1938 - A code...