Lucene search
SuseOPENSUSE-SU-2012:0590-1HistoryMay 07, 2012 - 4:08 p.m.
update for php5 (critical)
2012-05-0716:08:55
lists.opensuse.org
26
EPSS
0.937
Percentile
99.2%
when used in CGI mode remote attackers could inject command
line arguments to php
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| openSUSE | 11.4 | noarch | php5-pear | < 5.3.5-332.1 | php5-pear-5.3.5-332.1.noarch.rpm |
| openSUSE | 11.4 | i586 | php5-tidy-debuginfo | < 5.3.5-332.1 | php5-tidy-debuginfo-5.3.5-332.1.i586.rpm |
| openSUSE | 12.1 | x86_64 | php5 | < 5.3.8-4.15.2 | php5-5.3.8-4.15.2.x86_64.rpm |
| openSUSE | 11.4 | i586 | php5-zip-debuginfo | < 5.3.5-332.1 | php5-zip-debuginfo-5.3.5-332.1.i586.rpm |
| openSUSE | 11.4 | x86_64 | php5-pdo | < 5.3.5-332.1 | php5-pdo-5.3.5-332.1.x86_64.rpm |
| openSUSE | 11.4 | i586 | php5-mysql | < 5.3.5-332.1 | php5-mysql-5.3.5-332.1.i586.rpm |
| openSUSE | 12.1 | i586 | php5-sqlite-debuginfo | < 5.3.8-4.15.2 | php5-sqlite-debuginfo-5.3.8-4.15.2.i586.rpm |
| openSUSE | 11.4 | i586 | php5-suhosin | < 5.3.5-332.1 | php5-suhosin-5.3.5-332.1.i586.rpm |
| openSUSE | 11.4 | x86_64 | php5-shmop-debuginfo | < 5.3.5-332.1 | php5-shmop-debuginfo-5.3.5-332.1.x86_64.rpm |
| openSUSE | 11.4 | i586 | php5-gmp-debuginfo | < 5.3.5-332.1 | php5-gmp-debuginfo-5.3.5-332.1.i586.rpm |
References
Related
openvas
openvas
SuSE Update for update openSUSE-SU-2012:0590-1 (update)
2012-12-13 00:00:00
Fedora Update for maniadrive FEDORA-2012-7567
2012-05-28 00:00:00
Fedora Update for php-eaccelerator FEDORA-2012-7567
2012-05-28 00:00:00
fedora
fedora
[SECURITY] Fedora 16 Update: maniadrive-1.2-32.fc16.5
2012-05-27 01:52:21
[SECURITY] Fedora 15 Update: php-eaccelerator-0.9.6.1-9.fc15.5
2012-05-27 07:21:55
[SECURITY] Fedora 15 Update: maniadrive-1.2-32.fc15.5
2012-05-27 07:21:55
cert
cert
PHP-CGI query string parameter vulnerability
2012-05-03 00:00:00
Parallels Plesk Panel phppath/php vulnerability
2013-06-07 00:00:00
nessus
nessus
Fedora 15 : maniadrive-1.2-32.fc15.5 / php-5.3.13-1.fc15 / php-eaccelerator-0.9.6.1-9.fc15.5 (2012-7567)
2012-05-29 00:00:00
Ubuntu 8.04 LTS / 10.04 LTS / 11.04 / 11.10 / 12.04 LTS : php5 vulnerability (USN-1437-1)
2012-05-07 00:00:00
openSUSE Security Update : php5 (openSUSE-SU-2012:0590-1)
2014-06-13 00:00:00
prion
prion
Design/Logic Flaw
2012-05-11 10:15:00
Design/Logic Flaw
2012-05-11 10:15:00
Design/Logic Flaw
2012-05-11 10:15:00
ubuntucve
ubuntucve
cvelist
cvelist
nvd
nvd
ubuntu
ubuntu
PHP vulnerability
2012-05-04 00:00:00
cve
cve
freebsd
freebsd
php -- multiple vulnerabilities
2012-05-08 00:00:00
php -- vulnerability in certain CGI-based setups
2012-05-03 00:00:00
suse
suse
Security update for PHP5 (critical)
2012-05-09 06:08:17
Security update for PHP5 (critical)
2012-05-09 22:08:16
Security update for PHP5 (critical)
2012-05-09 02:08:18
debian
debian
[SECURITY] [DSA 2465-1] php5 security update
2012-05-09 17:23:53
threatpost
threatpost
PHP Group Releases New Versions, But Patch Doesn't Fix CVE-2012-1823 Bug
2012-05-04 14:26:46
Another Set of PHP Releases Pushed Out to Fix CVE-2012-1823 Flaw
2012-05-09 14:32:23
U.S. Cyber Command Using Classified Intel To Scare CEOs To Action
2012-05-09 18:39:14
exploitdb
exploitdb
Apache + PHP < 5.3.12 / < 5.4.2 - Remote Code Execution (Multithreaded Scanner) (2)
2013-11-01 00:00:00
Plesk < 9.5.4 - Remote Command Execution
2013-06-05 00:00:00
PHP < 5.3.12 / < 5.4.2 - CGI Argument Injection
2012-05-05 00:00:00
osv
osv
php5 - several
2012-05-09 00:00:00
checkpoint_advisories
checkpoint_advisories
thn
thn
amazon
amazon
Critical: php
2012-05-09 14:54:00
symantec
symantec
PHP 'php-cgi' Information Disclosure Vulnerability
2012-05-04 00:00:00
saint
saint
PHP CGI Query String Parameters Command Execution
2012-05-15 00:00:00
PHP CGI Query String Parameters Command Execution
2012-05-15 00:00:00
PHP CGI Query String Parameters Command Execution
2012-05-15 00:00:00
centos
centos
php security update
2012-05-07 21:09:19
php53 security update
2012-05-07 23:01:16
packetstorm
packetstorm
PHP-CGI Argument Injection Remote Code Execution
2012-12-24 00:00:00
PHP CGI Argument Injection
2012-05-22 00:00:00
PHP CGI Argument Injection
2012-05-06 00:00:00
seebug
seebug
Apache / PHP 5.x Remote Code Execution Exploit
2013-10-31 00:00:00
PHP CGI Argument Injection
2014-07-01 00:00:00
Apache / PHP 5.x - cgi-bin Remote Code Execution Exploit
2014-07-01 00:00:00
exploitpack
exploitpack
PHP 5.3.12 5.4.2 - CGI Argument Injection
2012-05-05 00:00:00
Apache + PHP 5.3.12 5.4.2 - cgi-bin Remote Code Execution
2013-10-29 00:00:00
Plesk 9.5.4 - Remote Command Execution
2013-06-05 00:00:00
metasploit
metasploit
PHP CGI Argument Injection
2012-05-09 16:01:15
redhat
redhat
(RHSA-2012:0568) Critical: php security update
2012-05-10 00:00:00
(RHSA-2012:0569) Critical: php53 security update
2012-05-10 00:00:00
(RHSA-2012:0546) Critical: php security update
2012-05-07 00:00:00
securityvulns
securityvulns
PHP CGI Argument Injection Remote Exploit V0.3 - PHP Version
2012-05-24 00:00:00
PHP multiple security vulnerabilities
2012-05-24 00:00:00
oraclelinux
oraclelinux
php security update
2012-05-07 00:00:00
php53 security update
2012-05-07 00:00:00
attackerkb
attackerkb
CVE-2012-1823
2012-05-11 00:00:00
CVE-2013-4878
2013-07-18 00:00:00
cisa_kev
cisa_kev
PHP-CGI Query String Parameter Vulnerability
2022-03-25 00:00:00
PHP-CGI OS Command Injection Vulnerability
2024-06-12 00:00:00
zdt
zdt
Apache Magicka Remote Code Execution Vulnerability
2013-10-31 00:00:00
canvas
canvas
Immunity Canvas: PHP_CGI_REMOTE
2012-05-11 10:15:00
veracode
veracode
Arbitrary Code Execution
2019-01-15 08:51:10
nuclei
nuclei
PHP CGI v5.3.12/5.4.2 Remote Code Execution
2021-07-20 09:32:27
hackerone
hackerone