Lucene search
K

20 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.37 views

Debian: Security Advisory (DLA-341-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS8.8AI score0.46801EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.37 views

SUSE: Security Advisory (SUSE-SU-2016:1145-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

10CVSS8.1AI score0.35438EPSS
Exploits3References11
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.36 views

SUSE: Security Advisory (SUSE-SU-2016:0284-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.1CVSS9.7AI score0.10288EPSS
Exploits1References2
Veracode
Veracode
added 2019/05/02 5:27 a.m.50 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.1AI score0.46801EPSS
Exploits8References8Affected Software1
Veracode
Veracode
added 2019/05/02 5:27 a.m.57 views

Denial Of Service (DoS)

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.2AI score0.46801EPSS
Exploits8References9Affected Software1
Veracode
Veracode
added 2019/05/02 5:27 a.m.40 views

Use-After-Free

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. Multiple flaws were discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrar...

9.8CVSS9.2AI score0.46801EPSS
Exploits8References10Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/01/02 12:0 a.m.44 views

SUSE SLES12 Security Update : php5 (SUSE-SU-2016:0284-1)

This update for php5 fixes the following issues : - CVE-2015-7803: Specially crafted .phar files with a crafted TAR archive entry allowed remote attackers to cause a Denial of Service DoS bsc949961 - CVE-2016-1903: Specially crafted image files could could allow remote attackers read unspecified...

9.1CVSS8AI score0.10288EPSS
Exploits1References7
Tenable Nessus
Tenable Nessus
added 2016/06/17 12:0 a.m.71 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1581-1)

This update for php53 fixes the following issues : - CVE-2016-5093: A geticuvalueinternal out-of-bounds read could crash the php interpreter bsc982010 - CVE-2016-5094,CVE-2016-5095: Don't allow creating strings with lengths outside int range, avoids overflows bsc982011,bsc982012 - CVE-2016-5096: ...

10CVSS8.4AI score0.35438EPSS
Exploits24References90
Tenable Nessus
Tenable Nessus
added 2016/04/27 12:0 a.m.44 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2016:1145-1)

This update for php53 fixes the following issues : - CVE-2015-8838: mysqlnd was vulnerable to BACKRONYM bnc973792. - CVE-2015-8835: SoapClient scall method suffered from a type confusion issue that could have lead to crashes bsc973351 - CVE-2016-2554: A NULL pointer dereference in phargetfpoffset...

10CVSS7.3AI score0.35438EPSS
Exploits3References25
Tenable Nessus
Tenable Nessus
added 2016/02/08 12:0 a.m.52 views

openSUSE Security Update : php5 (openSUSE-2016-157)

This update for php5 fixes the following issues : - CVE-2015-7803: Specially crafted .phar files with a crafted TAR archive entry allowed remote attackers to cause a Denial of Service DoS bsc949961 - CVE-2016-1903: Specially crafted image files could could allow remote attackers read unspecified...

9.1CVSS8AI score0.10288EPSS
Exploits1References4
Slackware Linux
Slackware Linux
added 2016/02/04 12:7 a.m.48 views

[slackware-security] php

New php packages are available for Slackware 14.0, 14.1, and -current to fix security issues. Here are the details from the Slackware 14.1 ChangeLog: patches/packages/php-5.6.17-i486-1slack14.1.txz: Upgraded. This release fixes bugs and security issues. IMPORTANT: READ BELOW ABOUT POTENTIALLY...

9.1CVSS7.9AI score0.10288EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2016/02/03 12:0 a.m.42 views

openSUSE Security Update : php5 (openSUSE-2016-100)

This update for php5 fixes the following issues : - CVE-2015-7803: Specially crafted .phar files with a crafted TAR archive entry allowed remote attackers to cause a Denial of Service DoS bsc949961 - CVE-2015-7804: Specially crafted .phar files with a crafted ZIP archive entry referencing a file...

9.1CVSS8AI score0.10288EPSS
Exploits1References6
CVE
CVE
added 2015/12/11 11:0 a.m.252 views

CVE-2015-7803

CVE-2015-7803 affects PHP's Phar handling: the phar_get_entry_data function in ext/phar/util.c can trigger a NULL pointer dereference and crash the app when a .phar TAR entry references a non-existent file. This denial-of-service condition affects PHP versions before 5.5.30 and 5.6.x before 5.6.1...

6.8CVSS7.7AI score0.10288EPSS
Exploits0References14Affected Software1
securityvulns
securityvulns
added 2015/11/02 12:0 a.m.300 views

[USN-2786-1] PHP vulnerabilities

========================================================================== Ubuntu Security Notice USN-2786-1 October 28, 2015 php5 vulnerabilities ========================================================================== A security issue affects these releases of Ubuntu and its derivatives: -...

6.8CVSS0.2AI score0.10288EPSS
Exploits0
F5 Networks
F5 Networks
added 2015/10/29 12:0 a.m.56 views

SOL17503 - PHP vulnerabilities CVE-2015-7803 and CVE-2015-7804

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

6.8CVSS3.3AI score0.10288EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2015/10/29 12:0 a.m.65 views

Ubuntu 14.04 LTS : PHP vulnerabilities (USN-2786-1)

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2786-1 advisory. It was discovered that the PHP phar extension incorrectly handled certain files. A remote attacker could use this issue to cause PHP to crash, resulting ...

6.8CVSS8.1AI score0.10288EPSS
Exploits0References3
Ubuntu
Ubuntu
added 2015/10/28 1:35 p.m.64 views

USN-2786-1: PHP vulnerabilities

It was discovered that the PHP phar extension incorrectly handled certain files. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service. CVE-2015-7803, CVE-2015-7804...

6.8CVSS8AI score0.10288EPSS
Exploits0
Amazon
Amazon
added 2015/10/20 12:0 a.m.80 views

Medium: php55

Issue Overview: As reported upstream https://bugs.php.net/bug.php?id=69720, A NULL pointer dereference flaw was found in the way PHP's Phar extension parsed Phar archives. A specially crafted archive could cause PHP to crash. CVE-2015-7803 A flaw was discovered in the way PHP performed object...

9.8CVSS9.1AI score0.46801EPSS
Exploits7
Tenable Nessus
Tenable Nessus
added 2015/10/06 12:0 a.m.128 views

PHP 5.6.x < 5.6.14 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.6.x prior to 5.6.14. It is, therefore, affected by multiple vulnerabilities : - A NULL pointer dereference flaw exists in the phargetfpoffset function in ext/phar/util.c that is triggered when pointing to a...

6.8CVSS7.9AI score0.10288EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/10/06 12:0 a.m.107 views

PHP 5.5.x < 5.5.30 Multiple Vulnerabilities

According to its banner, the version of PHP running on the remote web server is 5.5.x prior to 5.5.30. It is, therefore, affected by the following vulnerabilities : - A NULL pointer dereference flaw exists in the phargetfpoffset function in ext/phar/util.c that is triggered when pointing to a...

6.8CVSS8.1AI score0.10288EPSS
Exploits0References3
Rows per page
Query Builder