Lucene search
K

38 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.30 views

Linux Distros Unpatched Vulnerability : CVE-2015-4022

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to...

7.5CVSS7.8AI score0.20837EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.46 views

Debian: Security Advisory (DLA-307-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.21398EPSS
Exploits19References2
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.53 views

K16764: PHP vulnerability CVE-2015-4022

Security Advisory Description Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow. CVE-2015-40...

7.5CVSS9.5AI score0.20837EPSS
Exploits1
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.47 views

Mageia: Security Advisory (MGASA-2015-0231)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.1AI score0.50129EPSS
Exploits4References5
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2015:1253-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS7.8AI score0.50129EPSS
Exploits16References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.40 views

SUSE: Security Advisory (SUSE-SU-2015:1253-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.4AI score0.50129EPSS
Exploits16References2
Veracode
Veracode
added 2019/05/02 5:39 a.m.47 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interprete...

9.8CVSS9.1AI score0.50129EPSS
Exploits18References21Affected Software4
Veracode
Veracode
added 2019/05/02 5:39 a.m.53 views

Arbitrary File Write

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interprete...

9.8CVSS9.1AI score0.50129EPSS
Exploits18References20Affected Software4
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.59 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2015:1253-1)

This security update of PHP fixes the following issues : Security issues fixed : - CVE-2015-4024 bnc931421: Fixed multipart/form-data remote DOS Vulnerability. - CVE-2015-4026 bnc931776: pcntlexec did not check path validity. - CVE-2015-4022 bnc931772: Fixed and overflow in ftpgenlist that result...

10CVSS7.2AI score0.50129EPSS
Exploits16References45
Prion
Prion
added 2016/05/16 10:59 a.m.43 views

Integer overflow

Integer overflow in the ftpgenlist function in ext/ftp/ftp.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow. NOTE: this vulnerability exists because ...

7.5CVSS8.3AI score0.20837EPSS
Exploits2References13Affected Software9
OpenVAS
OpenVAS
added 2016/02/05 12:0 a.m.44 views

Oracle: Security Advisory (ELSA-2015-1219)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.4AI score0.50129EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2015/09/08 12:0 a.m.48 views

Amazon Linux: Security Advisory (ALAS-2015-534)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.8CVSS8AI score0.50129EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2015/07/10 12:0 a.m.77 views

CentOS Update for php CESA-2015:1218 centos6

Check the version of php SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.882219";...

10CVSS6.8AI score0.15531EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2015/07/10 12:0 a.m.51 views

RedHat Update for php RHSA-2015:1218-01

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.50129EPSS
Exploits29References2
Cent OS
Cent OS
added 2015/07/09 7:23 p.m.123 views

php security update

CentOS Errata and Security Advisory CESA-2015:1218 Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, whic...

10CVSS7.4AI score0.50129EPSS
Exploits30References7
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.54 views

Fedora Update for php FEDORA-2015-8281

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS8.6AI score0.50129EPSS
Exploits6References2
OpenVAS
OpenVAS
added 2015/07/07 12:0 a.m.58 views

Ubuntu: Security Advisory (USN-2658-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.2AI score0.50129EPSS
Exploits19References2
Check Point Advisories
Check Point Advisories
added 2015/07/01 12:0 a.m.18 views

PHP ftp_genlist method Integer Overflow (CVE-2015-4022)

A code execution vulnerability exists in PHP's ftpgenlist method. The vulnerability is due to lack of integer overflow detection when calculating the size of the response to the FTP LIST command. A remote attacker can exploit the vulnerability by hosting an FTP server and sending crafted ata to a...

7.5CVSS4.1AI score0.20837EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2015/06/25 12:0 a.m.51 views

Scientific Linux Security Update : php on SL7.x x86_64 (20150623)

A flaw was found in the way the PHP module for the Apache httpd web server handled pipelined requests. A remote attacker could use this flaw to trigger the execution of a PHP script in a deinitialized interpreter, causing it to crash or, possibly, execute arbitrary code. CVE-2015-3330 A flaw was...

10CVSS8.1AI score0.53166EPSS
Exploits44References32
Tenable Nessus
Tenable Nessus
added 2015/06/24 12:0 a.m.314 views

CentOS 7 : php (CESA-2015:1135)

Updated php packages that fix multiple security issues and several bugs are now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having Important security impact. Common Vulnerability Scoring System CVSS base scores, which give detailed severity ratings,...

10CVSS8AI score0.53166EPSS
Exploits45References33
Rows per page
Query Builder