Multiple format string vulnerabilities in PHP 5.3 phar extension, pre 5.3.2, allow sensitive data disclosure and potential arbitrary code execution via crafted phar:// URI
Reporter | Title | Published | Views | Family All 44 |
---|---|---|---|---|
NVD | CVE-2010-2094 | 27 May 201022:30 | – | nvd |
NVD | CVE-2010-2950 | 28 Sep 201018:00 | – | nvd |
Exploit DB | PHP 5.3.x < 5.3.2 - 'ext/phar/stream.c' / 'ext/phar/dirstream.c' Multiple Format String Vulnerabilities | 14 May 201000:00 | – | exploitdb |
Tenable Nessus | FreeBSD : pecl-phar -- format string vulnerability (da3d381b-0ee6-11e0-becc-0022156e8794) | 14 Oct 201100:00 | – | nessus |
Tenable Nessus | Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : php5 vulnerabilities (USN-989-1) | 21 Sep 201000:00 | – | nessus |
Tenable Nessus | PHP 5.3 < 5.3.4 Multiple Vulnerabilities | 10 Dec 201000:00 | – | nessus |
Tenable Nessus | PHP 5.3.x < 5.3.4 Multiple Vulnerabilities | 10 Dec 201000:00 | – | nessus |
Tenable Nessus | PHP 5.3 < 5.3.4 Multiple Vulnerabilities | 13 Dec 201000:00 | – | nessus |
Tenable Nessus | SuSE 10 Security Update : Linux kernel (ZYPP Patch Number 7110) | 11 Oct 201000:00 | – | nessus |
Tenable Nessus | openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0678-1) | 6 Oct 201000:00 | – | nessus |
OS | OS Version | Architecture | Package | Package Version | Filename |
---|---|---|---|---|---|
ubuntu | 10.04 | noarch | php5 | 5.3.2-1ubuntu4.5 | UNKNOWN |
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo