Denial Of Service (DoS)

2020-04-1001:03:25

Veracode Vulnerability Database

sca.analysiscenter.veracode.com

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

JSON

php is vulnerable to denial of service (DoS). The vulnerability exists as a bug in the PHP Streams component caused the PHP interpreter to crash if an FTP wrapper connection was made through an HTTP proxy. A remote attacker could possibly trigger this issue if a PHP script accepted an untrusted URL to connect to.

CPENameOperatorVersion
phpeq5.1.6__11.el5
phpeq5.1.6__7.el5
phpeq5.1.6__20.el5_2.1
phpeq5.3.2__6.el6_0.1
phpeq5.1.6__12.el5
phpeq5.1.6__20.el5
phpeq5.3.2__6.el6
phpeq5.1.6__23.2.el5_3
phpeq5.1.6__24.el5_4.5
phpeq5.1.6__15.el5

Name	Operator	Version
php	eq	5.1.6__11.el5
php	eq	5.1.6__7.el5
php	eq	5.1.6__20.el5_2.1
php	eq	5.3.2__6.el6_0.1
php	eq	5.1.6__12.el5
php	eq	5.1.6__20.el5
php	eq	5.3.2__6.el6
php	eq	5.1.6__23.2.el5_3
php	eq	5.1.6__24.el5_4.5
php	eq	5.1.6__15.el5