Amazon Linux: Security Advisory (ALAS-2011-7)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

PHP < 5.3.9 Multiple Vulnerabilities

According to its banner, the version of PHP installed on the remote host is older than 5.3.9. As such, it may be affected by the following security issues : - The 'isa' function in PHP 5.3.7 and 5.3.8 triggers a call to 'autoload'. CVE-2011-3379 - It is possible to create a denial of service...

PHP 5.3.7, 5.3.8 Remote Arbitrary Code Execution Vulnerability - Windows

PHP is prone to a remote arbitrary code execution vulnerability. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if...

CVE-2011-3379

CVE-2011-3379 : The is_a() function in PHP 5.3.7/5.3.8 can trigger __autoload, enabling remote attackers to execute arbitrary code by supplying a crafted URL and abusing unsafe autoloaders in certain PEAR packages. The issue is tied to PHP’s autoload behavior and the is_a() path, with public advi...

Security issue is_a function in PHP 5.3.7+

PHP 5.3.7 changed the behavior of the isa function, used to check if an object is an instance of a class, to call the autoload function. This causes a remote code execute problem when coupled with a standard library like PEAR that internally uses isa to check if a returned variable is an Error...