5 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.016 Low
EPSS
Percentile
87.2%
Stack consumption vulnerability in PHP 5.2 through 5.2.13 and 5.3 through
5.3.2 allows context-dependent attackers to cause a denial of service (PHP
crash) via a crafted first argument to the fnmatch function, as
demonstrated using a long string.
Author | Note |
---|---|
mdeslaur | This is MOPS-2010-021 |
security-tracker.debian.org/tracker/DSA-2089-1
www.php-security.org/2010/05/11/mops-2010-021-php-fnmatch-stack-exhaustion-vulnerability/index.html
launchpad.net/bugs/cve/CVE-2010-1917
nvd.nist.gov/vuln/detail/CVE-2010-1917
security-tracker.debian.org/tracker/CVE-2010-1917
ubuntu.com/security/notices/USN-989-1
www.cve.org/CVERecord?id=CVE-2010-1917