Lucene search
UbuntuUSN-1761-1HistoryMar 13, 2013 - 12:00 a.m.
PHP vulnerability
2013-03-1300:00:00
ubuntu.com
36
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
68.8%
Releases
- Ubuntu 12.10
- Ubuntu 12.04
- Ubuntu 11.10
- Ubuntu 10.04
- Ubuntu 8.04
Packages
- php5 - HTML-embedded scripting language interpreter
Details
It was discovered that PHP incorrectly handled XML external entities in
SOAP WSDL files. A remote attacker could use this flaw to read arbitrary
files off the server.
| OS | Version | Architecture | Package | Version | Filename |
|---|---|---|---|---|---|
| Ubuntu | 8.04 | noarch | php5 | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | libapache2-mod-php5 | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-cgi | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-cli | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-common | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-curl | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-dev | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-gd | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-gmp | < 5.2.4-2ubuntu5.27 | UNKNOWN |
| Ubuntu | 8.04 | noarch | php5-ldap | < 5.2.4-2ubuntu5.27 | UNKNOWN |
References
Related
veracode
veracode
XML External Entity (XXE)
2019-05-02 04:52:37
openvas
openvas
Ubuntu Update for php5 USN-1761-1
2013-03-15 00:00:00
Ubuntu Update for php5 USN-1761-1
2013-03-15 00:00:00
Fedora Update for php FEDORA-2013-10255
2013-06-24 00:00:00
nessus
nessus
Ubuntu 8.04 LTS / 10.04 LTS / 11.10 / 12.04 LTS / 12.10 : php5 vulnerability (USN-1761-1)
2013-03-14 00:00:00
PHP 5.3.x < 5.3.27 Information Disclosure
2013-07-16 00:00:00
PHP 5.3.x < 5.3.27 Information Disclosure
2013-07-16 00:00:00
f5
f5
K14433 : PHP SOAP vulnerability CVE-2013-1643
2013-09-17 00:00:00
SOL14433 - PHP SOAP vulnerability CVE-2013-1643
2013-05-30 00:00:00
ptsecurity
ptsecurity
PT-2013-14: XML External Entities Injection in PHP
2013-03-14 00:00:00
prion
prion
Xxe
2013-03-06 13:10:00
debian
debian
[SECURITY] [DSA 2639-1] php5 security update
2013-03-05 17:22:41
securityvulns
securityvulns
PHP securiy vulnerabilities
2013-03-02 00:00:00
[ MDVSA-2013:016 ] php
2013-03-02 00:00:00
cve
cve
CVE-2013-1643
2013-03-06 13:10:00
ubuntucve
ubuntucve
CVE-2013-1643
2013-03-06 00:00:00
CVE-2013-1824
2013-09-16 00:00:00
fedora
fedora
[SECURITY] Fedora 18 Update: php-5.4.16-1.fc18
2013-06-20 02:31:36
[SECURITY] Fedora 18 Update: php-5.4.13-1.fc18
2013-04-03 04:40:40
[SECURITY] Fedora 18 Update: php-5.4.17-2.fc18
2013-07-23 01:15:46
slackware
slackware
php
2013-03-23 20:35:59
freebsd
freebsd
php5 -- Multiple vulnerabilities
2013-03-04 00:00:00
osv
osv
php5 - several vulnerabilities
2013-03-05 00:00:00
redhat
redhat
(RHSA-2013:1615) Moderate: php security, bug fix, and enhancement update
2013-11-21 00:00:00
(RHSA-2013:1814) Critical: php security update
2013-12-11 00:00:00
(RHSA-2013:1307) Moderate: php53 security, bug fix and enhancement update
2013-09-30 16:52:28
centos
centos
php security update
2013-11-26 13:32:36
php security update
2013-12-11 09:34:01
php53 security update
2013-10-07 12:42:03
suse
suse
Security update for PHP5 (important)
2013-08-09 23:04:16
Security update for PHP5 (important)
2013-08-01 00:04:12
Security update for PHP5 (important)
2013-08-09 23:04:20
oraclelinux
oraclelinux
php security, bug fix, and enhancement update
2013-11-25 00:00:00
php security update
2013-12-10 00:00:00
php53 security, bug fix and enhancement update
2013-10-02 00:00:00
hackerone
hackerone
Yahoo!: Out of date version
2014-03-30 08:47:50
gentoo
gentoo
PHP: Multiple vulnerabilities
2014-08-29 00:00:00
6.3 Medium
AI Score
Confidence
Low
5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
0.003 Low
EPSS
Percentile
68.8%
Related for USN-1761-1