Lucene search
RootSSV:60840HistoryJun 11, 2013 - 12:00 a.m.
PHP "php_quot_print_encode()"缓冲区溢出漏洞(CVE-2013-2110)
2013-06-1100:00:00
Root
www.seebug.org
33
0.055 Low
EPSS
Percentile
92.4%
Bugtraq ID:60411
CVE ID:CVE-2013-2110
PHP是一种HTML内嵌式的语言。
"php_quot_print_encode()"函数(ext/standard/quot_print.c)在解析字符串时存在一个基于堆的缓冲区溢出,允许攻击者利用此漏洞以应用程序上下文执行任意代码。
此外在解析MP3文件的MIMETYPE时存在一个安全问题,可导致PHP 5.4.15版本崩溃。
0
PHP 5.3.x
PHP 5.4.x
厂商解决方案
PHP 5.4.16或5.3.26已经修复此漏洞,建议用户下载更新:
http://www.php.net/
Related
nessus
nessus
Amazon Linux AMI : php54 (ALAS-2013-206)
2013-09-04 00:00:00
Ubuntu 13.04 : php5 vulnerability (USN-1872-1)
2013-06-12 00:00:00
openvas
openvas
Amazon Linux: Security Advisory (ALAS-2013-206)
2015-09-08 00:00:00
Amazon Linux: Security Advisory (ALAS-2013-205)
2015-09-08 00:00:00
Ubuntu: Security Advisory (USN-1872-1)
2013-06-13 00:00:00
prion
prion
Heap overflow
2013-06-21 20:55:00
securityvulns
securityvulns
PHP buffer overflow
2013-06-17 00:00:00
[slackware-security] php (SSA:2013-161-01)
2013-06-17 00:00:00
f5
f5
SOL15876 - PHP vulnerability CVE-2013-2110
2014-12-01 00:00:00
K15876 : PHP vulnerability CVE-2013-2110
2015-01-30 00:00:00
slackware
slackware
[slackware-security] php
2013-06-11 01:00:34
amazon
amazon
Critical: php54
2013-06-24 13:48:00
Critical: php
2013-06-24 13:48:00
ubuntu
ubuntu
PHP vulnerability
2013-06-11 00:00:00
ubuntucve
ubuntucve
CVE-2013-2110
2013-06-10 00:00:00
checkpoint_advisories
checkpoint_advisories
PHP php_quot_print_encode Heap Buffer Overflow (CVE-2013-2110)
2013-09-22 00:00:00
freebsd
freebsd
php5 -- Heap based buffer overflow in quoted_printable_encode
2013-06-06 00:00:00
cve
cve
CVE-2013-2110
2013-06-21 20:55:00
mageia
mageia
Updated php packages fix security vulnerabilies
2013-06-18 19:00:10
Updated php package fixes several issues
2013-06-19 14:20:15
hackerone
hackerone
Yahoo!: Out of date version
2014-03-30 08:47:50
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00