Lucene search

K

Ubuntu.comUB:CVE-2009-1271

HistoryApr 08, 2009 - 12:00 a.m.

CVE-2009-1271

2009-04-0800:00:00

ubuntu.com

ubuntu.com

9

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.089 Low

EPSS

Percentile

94.5%

The JSON_parser function (ext/json/JSON_parser.c) in PHP 5.2.x before 5.2.9
allows remote attackers to cause a denial of service (segmentation fault)
via a malformed string to the json_decode API function.

OSVersionArchitecturePackageVersionFilename
ubuntu8.04noarchphp5< 5.2.4-2ubuntu5.6UNKNOWN
ubuntu8.10noarchphp5< 5.2.6-2ubuntu4.2UNKNOWN
ubuntu9.04noarchphp5< 5.2.6.dfsg.1-3ubuntu4.1UNKNOWN

References

www.php.net/releases/5_2_9.php

launchpad.net/bugs/cve/CVE-2009-1271

nvd.nist.gov/vuln/detail/CVE-2009-1271

security-tracker.debian.org/tracker/CVE-2009-1271

ubuntu.com/security/notices/USN-761-1

ubuntu.com/security/notices/USN-761-2

www.cve.org/CVERecord?id=CVE-2009-1271

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.089 Low

EPSS

Percentile

94.5%

Related for UB:CVE-2009-1271

openvas32 prion1 debian2 veracode1 securityvulns2 cve1 nessus13 osv2 ubuntu2 redhat1 fedora4 gentoo1