5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
0.002 Low
EPSS
Percentile
53.0%
DISPUTED The Zend Engine in PHP before 5.4.16 RC1, and 5.5.0 before
RC2, does not properly determine whether a parser error occurred, which
allows context-dependent attackers to cause a denial of service (memory
consumption and application crash) via a crafted function definition, as
demonstrated by an attack within a shared web-hosting environment. NOTE:
the vendor’s http://php.net/security-note.php page says “for critical
security situations you should be using OS-level security by running
multiple web servers each as their own user id.”
Author | Note |
---|---|
seth-arnold | PHP interpreter crashes are outside scope of PHP’s security model, OS-provided controls must be used to separate untrusted users’ code. |
bugs.php.net/bug.php?id=64660
github.com/php/php-src/blob/php-5.4.16RC1/NEWS
github.com/php/php-src/blob/php-5.5.0RC2/NEWS
github.com/php/php-src/commit/fb58e69a84f4fde603a630d2c9df2fa3be16d846
launchpad.net/bugs/cve/CVE-2013-3735
nvd.nist.gov/vuln/detail/CVE-2013-3735
security-tracker.debian.org/tracker/CVE-2013-3735
www.cve.org/CVERecord?id=CVE-2013-3735