Lucene search

K
ubuntucveUbuntu.comUB:CVE-2004-0958
HistoryNov 03, 2004 - 12:00 a.m.

CVE-2004-0958

2004-11-0300:00:00
ubuntu.com
ubuntu.com
10

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.03 Low

EPSS

Percentile

90.8%

php_variables.c in PHP before 5.0.2 allows remote attackers to read
sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC
variables that end in an open bracket character, which causes PHP to
calculate an incorrect string length.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp4< 4.4.2-1build1UNKNOWN
ubuntu6.10noarchphp4< 4.4.2-1build1UNKNOWN
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.9UNKNOWN
ubuntu6.10noarchphp5< 5.1.6-1ubuntu2.6UNKNOWN
ubuntu7.04noarchphp5< 5.2.1-0ubuntu1.4UNKNOWN

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

0.03 Low

EPSS

Percentile

90.8%

Related for UB:CVE-2004-0958