Anfälligkeitssuche        Suche in 219043 CVE Beschreibungen
und 99761 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:1.3.6.1.4.1.25623.1.0.805658
Kategorie:Web application abuses
Titel:PHP Multiple Vulnerabilities - 04 - Jun15 (Linux)
Zusammenfassung:PHP is prone to multiple vulnerabilities.
Beschreibung:Summary:
PHP is prone to multiple vulnerabilities.

Vulnerability Insight:
The flaw is due to vulnerability in
'php_handler' function in sapi/apache2handler/sapi_apache2.c script in PHP.

Vulnerability Impact:
Successfully exploiting this issue allow
remote attackers to cause a denial of service or possibly execute arbitrary
code via pipelined HTTP requests.

Affected Software/OS:
PHP versions before 5.4.40, 5.5.x before
5.5.24, and 5.6.x before 5.6.8.

Solution:
Update to PHP 5.4.40 or 5.5.24 or 5.6.8
or later.

CVSS Score:
6.8

CVSS Vector:
AV:N/AC:M/Au:N/C:P/I:P/A:P

Querverweis: BugTraq ID: 74204
Common Vulnerability Exposure (CVE) ID: CVE-2015-3330
http://lists.apple.com/archives/security-announce/2015/Aug/msg00001.html
http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html
http://www.securityfocus.com/bid/74204
https://security.gentoo.org/glsa/201606-10
http://openwall.com/lists/oss-security/2015/04/17/7
RedHat Security Advisories: RHSA-2015:1066
http://rhn.redhat.com/errata/RHSA-2015-1066.html
RedHat Security Advisories: RHSA-2015:1135
http://rhn.redhat.com/errata/RHSA-2015-1135.html
RedHat Security Advisories: RHSA-2015:1186
http://rhn.redhat.com/errata/RHSA-2015-1186.html
RedHat Security Advisories: RHSA-2015:1187
http://rhn.redhat.com/errata/RHSA-2015-1187.html
http://www.securitytracker.com/id/1033703
SuSE Security Announcement: SUSE-SU-2015:0868 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00005.html
SuSE Security Announcement: openSUSE-SU-2015:0855 (Google Search)
http://lists.opensuse.org/opensuse-security-announce/2015-05/msg00004.html
http://www.ubuntu.com/usn/USN-2572-1
CopyrightCopyright (C) 2015 Greenbone Networks GmbH

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.




© 1998-2021 E-Soft Inc. Alle Rechte vorbehalten.