BUGTRAQSECURITYVULNS:VULN:12097

HistoryFeb 08, 2012 - 12:00 a.m.

PHP security vulnerabilities

2012-02-0800:00:00

BUGTRAQ

vulners.com

Reading outside allocated memory on JPEG exif headers parsing. CPU exhaustion because of predictable hash collisions for form data.

CPENameOperatorVersion
phpeq5.4
phpeq5.3

CPE	Name	Operator	Version
	php	eq	5.4
	php	eq	5.3

References

vulners.com/securityvulns/securityvulns:doc:27500

vulners.com/securityvulns/securityvulns:doc:27501

nessus 46

freebsd 2

openvas 85

fedora 12

oraclelinux 5

redhat 5

ubuntucve 3

amazon 2

cve 3

centos 5

prion 3

seebug 4

veracode 3

debian 4

osv 1

checkpoint_advisories 5

packetstorm 2

ubuntu 3

f5 2

exploitpack 1

slackware 1

securityvulns 1

suse 1

nessus

CentOS 5 / 6 : php / php53 (CESA-2012:0019)

2012-01-12 00:00:00

Amazon Linux AMI : php (ALAS-2012-37)

2013-09-04 00:00:00

Fedora 16 : maniadrive-1.2-32.fc16.1 / php-5.3.9-1.fc16 / php-eaccelerator-0.9.6.1-9.fc16.1 (2012-0504)

2012-01-20 00:00:00

freebsd

php -- multiple vulnerabilities

2011-12-29 00:00:00

php -- arbitrary remote code execution vulnerability

2012-02-02 00:00:00

openvas

Amazon Linux: Security Advisory (ALAS-2012-37)

2015-09-08 00:00:00

Fedora Update for maniadrive FEDORA-2012-0504

2012-04-02 00:00:00

Fedora Update for php-eaccelerator FEDORA-2012-0420

2012-02-01 00:00:00

fedora

[SECURITY] Fedora 16 Update: php-eaccelerator-0.9.6.1-9.fc16.1

2012-01-19 22:00:25

[SECURITY] Fedora 16 Update: php-5.3.9-1.fc16

2012-01-19 22:00:25

[SECURITY] Fedora 16 Update: maniadrive-1.2-32.fc16.1

2012-01-19 22:00:25

oraclelinux

php53 and php security update

2012-01-11 00:00:00

php security update

2012-01-30 00:00:00

php security update

2012-02-02 00:00:00

redhat

(RHSA-2012:0019) Moderate: php53 and php security update

2012-01-11 00:00:00

(RHSA-2012:0093) Critical: php security update

2012-02-02 00:00:00

(RHSA-2012:0092) Critical: php53 security update

2012-02-02 00:00:00

ubuntucve

CVE-2012-0830

2012-02-06 00:00:00

CVE-2011-4885

2011-12-29 00:00:00

CVE-2011-4566

2011-11-28 00:00:00

amazon

Critical: php

2012-02-02 16:10:00

Medium: php

2012-01-19 20:10:00

cve

CVE-2012-0830

2012-02-06 20:55:00

CVE-2011-4885

2011-12-30 01:55:00

CVE-2011-4566

2011-11-29 00:55:00

centos

php, php53 security update

2012-01-11 19:19:36

php53 security update

2012-02-03 01:43:26

php security update

2012-02-03 01:41:17

prion

Design/Logic Flaw

2012-02-06 20:55:00

Code injection

2011-12-30 01:55:00

Integer overflow

2011-11-29 00:55:00

seebug

PHP "php_register_variable_ex()"函数任意代码执行漏洞(CVE-2012-0830)

2012-02-03 00:00:00

PHP "exif_process_IFD_TAG()"远程整数溢出漏洞

2011-12-07 00:00:00

PHP Hashtables Denial of Service

2014-07-01 00:00:00

veracode

Remote Code Execution (RCE)

2020-04-10 01:10:12

Denial Of Service (DoS)

2020-04-10 01:06:05

Denial Of Service (DoS)

2020-04-10 01:06:05

debian

[SECURITY] [DSA 2399-2] php5 regression fix

2012-01-31 15:26:47

[SECURITY] [DSA 2399-1] php5 security update

2012-01-31 07:22:58

[SECURITY] [DSA 2403-1] php5 security update

2012-02-02 21:29:48

osv

php5 - several

2012-01-31 00:00:00

checkpoint_advisories

PHP5 Hash Collision Denial Of Service - Ver2 (CVE-2011-4885)

2014-03-03 00:00:00

PHP Exif Header Parsing Integer Overflow (CVE-2011-4566)

2012-08-27 00:00:00

PHP Exif Header Parsing Integer Overflow - Ver2 (CVE-2011-4566)

2015-03-26 00:00:00

packetstorm

PHP 5.3.x Hashtables Proof Of Concept

2012-01-01 00:00:00

PHP 5.3.x Hash Collision Proof Of Concept Code

2012-01-02 00:00:00

ubuntu

PHP vulnerability

2011-12-14 00:00:00

PHP vulnerabilities

2012-02-10 00:00:00

PHP regression

2012-02-13 00:00:00

K13588 : PHP vulnerability CVE-2011-4885

2013-09-11 00:00:00

SOL13588 - PHP vulnerability CVE-2011-4885

2012-05-17 00:00:00

exploitpack

PHP 5.3.8 - Hashtables Denial of Service

2012-01-01 00:00:00

slackware

[slackware-security] php

2012-02-10 17:44:15

securityvulns

[ MDVSA-2012:065 ] php

2012-05-01 00:00:00

suse

update for php5 (important)

2012-03-29 15:08:14

Products

Security Intelligence
Non-intrusive assessment
Developers SDK
Windows scanner
Linux scanner
Perimeter control tool
MSSP

Database

Vulnerabilities
Exploits
IOC
Security News
BugBounty
Popular
Wild Exploited
Top Vulnerabilities

Tools

Linux Security Scanner
API integration
Subscriptions
Plugins
Manual Audit

Learn More

Stats
API
Docs
Api-keys
License
Pricing
Glossary
FAQ

Company

Blog
Contacts
About Us
OpenSource
EULA
Brand Guideline
Privacy Policy

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply. All product names, logos, and brands are property of their respective owners. All company, product and service names used in this website are for identification purposes only. Use of these names, logos, and brands does not imply endorsement.If you are an owner of some content and want it to be removed, please contact us. Using Vulners services you are accepting Vulners services end-user license agreement

@2024 Vulners Inc

JSON

Related for SECURITYVULNS:VULN:12097