5 matches found
Linux Distros Unpatched Vulnerability : CVE-2014-9912
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The geticudispvaluesrcphp function in ext/intl/locale/localemethods.c in PHP before 5.3.29, 5.4.x before 5.4.30, and 5.5.x before 5.5.14 does not properly...
Ubuntu 14.04 LTS : PHP vulnerabilities (USN-3196-1)
The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3196-1 advisory. It was discovered that PHP incorrectly handled certain arguments to the localegetdisplayname function. A remote attacker could use this issue to cause PH...
USN-3196-1: PHP vulnerabilities
It was discovered that PHP incorrectly handled certain arguments to the localegetdisplayname function. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code. CVE-2014-9912 It was discovered that PHP incorrectly handled...
CVE-2014-9912
The CVE-2014-9912 entry affects PHP’s get_icu_disp_value_src_php in ext/intl/locale/locale_methods.c. The issue arises when calling locale_get_display_name with a long first argument, failing to properly restrict calls to ICU’s uresbund.cpp, which can cause a denial of service via a buffer overfl...
KLA10931 Denial of service vulnerability in PHP
An unspecified vulnerability was found in PHP before 5.3.29, 5.4.x before 5.4.30, and 5.5.x before 5.5.14. By exploiting this vulnerability malicious users can cause a denial of service. Other unspecified impacts are also possible. This vulnerability can be exploited remotely via a...