Test Kennung:	1.3.6.1.4.1.25623.1.0.801586
Kategorie:	Denial of Service
Titel:	PHP < 5.2.15, 5.3.x < 5.3.4 DoS Vulnerabilities
Zusammenfassung:	PHP is prone to multiple denial of service (DoS); vulnerabilities.
Beschreibung:	Summary: PHP is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2010-4697: An use-after-free error in the 'Zend' engine, which allows remote attackers to cause a denial of service. - CVE-2010-4698: A stack-based buffer overflow in the 'GD' extension, which allows attackers to cause a denial of service. Vulnerability Impact: Successful exploitation could allow local attackers to crash the affected application, denying service to legitimate users. Affected Software/OS: PHP version prior to 5.2.15 and 5.3.x prior to 5.3.4. Solution: Update to version 5.2.15, 5.3.4 or later. CVSS Score: 6.8 CVSS Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2010-4697 BugTraq ID: 45952 http://www.securityfocus.com/bid/45952 HPdes Security Advisory: HPSBOV02763 http://marc.info/?l=bugtraq&m=133469208622507&w=2 HPdes Security Advisory: SSRT100826 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12528 XForce ISS Database: php-zendengine-code-execution(65310) https://exchange.xforce.ibmcloud.com/vulnerabilities/65310 Common Vulnerability Exposure (CVE) ID: CVE-2010-4698 BugTraq ID: 45338 http://www.securityfocus.com/bid/45338 http://seclists.org/fulldisclosure/2010/Dec/180 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11939
Copyright	Copyright (C) 2011 Greenbone AG

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.