Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-2626
HistoryDec 01, 2009 - 12:00 a.m.

CVE-2009-2626

2009-12-0100:00:00
ubuntu.com
ubuntu.com
6

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.176 Low

EPSS

Percentile

96.1%

JSON

The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10,
and earlier versions allows context-specific attackers to obtain sensitive
information (memory contents) and cause a PHP crash by using the ini_set
function to declare a variable, then using the ini_restore function to
restore the variable.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.18UNKNOWN
ubuntu8.04noarchphp5< 5.2.4-2ubuntu5.10UNKNOWN
ubuntu8.10noarchphp5< 5.2.6-2ubuntu4.6UNKNOWN
ubuntu9.04noarchphp5< 5.2.6.dfsg.1-3ubuntu4.5UNKNOWN
ubuntu9.10noarchphp5< 5.2.10.dfsg.1-2ubuntu6.4UNKNOWN

Related

seebug 1
cve 1
packetstorm 1
f5 2
prion 1
openvas 8
nessus 10
ubuntu 1
debian 2
osv 1
gentoo 1
seebug
seebug
PHP ini_restore()内存信息泄露漏洞
2009-11-30 00:00:00
cve
cve
CVE-2009-2626
2009-12-01 16:30:00
packetstorm
packetstorm
PHP ini_restore Memory Disclosure
2009-12-04 00:00:00
f5
f5
SOL13231 - PHP vulnerability CVE-2009-2626
2011-11-21 00:00:00
K13231 : PHP vulnerability CVE-2009-2626
2013-09-09 00:00:00
prion
prion
Information disclosure
2009-12-01 16:30:00
openvas
openvas
PHP Multiple Vulnerabilities (Dec 2009)
2009-12-04 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2010:008)
2010-01-18 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : php5 vulnerabilities (USN-882-1)
2010-01-14 00:00:00
Debian DSA-1940-1 : php5 - multiple issues
2010-02-24 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-01-13 00:00:00
debian
debian
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
osv
osv
php5 - multiple issues
2009-11-25 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2010-01-05 00:00:00

6.4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

0.176 Low

EPSS

Percentile

96.1%

JSON
Related for UB:CVE-2009-2626
seebug1cve1packetstorm1f52prion1openvas8nessus10ubuntu1debian2osv1gentoo1