17 matches found
EUVD-2010-1880
Malware in sbrugna...
EUVD-2010-2118
Malware in sbrugna...
EUVD-2010-1884
Malware in sbrugna...
EUVD-2010-2117
Malware in sbrugna...
EUVD-2010-1882
Malware in sbrugna...
SUSE CVE-2010-2101
The 1 striptags, 2 setcookie, 3 strtok, 4 wordwrap, 5 strwordcount, and 6 strpad functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the...
SUSE CVE-2010-2100
The 1 htmlentities, 2 htmlspecialchars, 3 strgetcsv, 4 httpbuildquery, 5 strpbrk, and 6 strtr functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function,...
PHP unpack()函数中断处理信息泄露漏洞
CVE ID: CVE-2010-2191 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP的unpack函数中存在信息泄露漏洞: char format, input, formatarg, inputarg; int formatlen, formatarglen, inputarglen; int inputpos, inputlen, i; if zendparseparametersZENDNUMARGS TSRMLSCC, "ss", &formatarg, &formatarglen, &inputarg, &inputarglen =...
CVE-2010-2190
The 1 trim, 2 ltrim, 3 rtrim, and 4 substrreplace functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference...
Memory corruption
The 1 parsestr, 2 pregmatch, 3 unpack, and 4 pack functions; the 5 ZENDFETCHRW, 6 ZENDCONCAT, and 7 ZENDASSIGNCONCAT opcodes; and the 8 ArrayObject::uasort method in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents or...
PHP http_build_query()函数中断处理地址信息泄露漏洞
CVE ID: CVE-2010-2100 PHP是广泛使用的通用目的脚本语言,特别适合于Web开发,可嵌入到HTML中。 PHP的httpbuildquery函数中存在信息泄露漏洞: PHPFUNCTIONhttpbuildquery zval formdata; char prefix = NULL, argsep=NULL; int argseplen = 0, prefixlen = 0; smartstr formstr = 0; if zendparseparametersZENDNUMARGS TSRMLSCC, "z|ss", &formdata, &prefix,...
CVE-2010-2100
The 1 htmlentities, 2 htmlspecialchars, 3 strgetcsv, 4 httpbuildquery, 5 strpbrk, and 6 strtr functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function,...
CVE-2010-2097
The 1 iconvmimedecode, 2 iconvsubstr, and 3 iconvmimeencode functions in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by...
CVE-2010-1915
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
Design/Logic Flaw
The pregquote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose...
CVE-2010-1864
The addcslashes function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...
CVE-2010-1862
The chunksplit function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information memory contents by causing a userspace interruption of an internal function, related to the call time pass by reference feature...