ID de Prueba:	1.3.6.1.4.1.25623.1.0.100582
Categoría:	Web application abuses
Título:	PHP 4.4.x < 4.4.9, 5.2.x < 5.2.8 DoS Vulnerability
Resumen:	PHP is prone to a denial of service (DoS) vulnerability; because the application fails to handle certain file requests.
Descripción:	Summary: PHP is prone to a denial of service (DoS) vulnerability because the application fails to handle certain file requests. Vulnerability Impact: Attackers can exploit this issue to crash the affected application, denying service to legitimate users. Affected Software/OS: PHP versions 4.4.x prior to 4.4.9 and 5.2.x through 5.2.6. Solution: Updates are available. Please see the references for more information. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2008-3660 http://lists.apple.com/archives/security-announce/2009/May/msg00002.html Bugtraq: 20090302 rPSA-2009-0035-1 php php-cgi php-imap php-mcrypt php-mysql php-mysqli php-pgsql php-soap php-xsl php5 php5-cgi php5-imap php5-mcrypt php5-mysql php5-mysqli php5-pear php5-pgsql php5-soap php5-xsl (Google Search) http://www.securityfocus.com/archive/1/501376/100/0/threaded Cert/CC Advisory: TA09-133A http://www.us-cert.gov/cas/techalerts/TA09-133A.html Debian Security Information: DSA-1647 (Google Search) http://www.debian.org/security/2008/dsa-1647 https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01451.html https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01465.html http://security.gentoo.org/glsa/glsa-200811-05.xml HPdes Security Advisory: HPSBUX02431 http://marc.info/?l=bugtraq&m=124654546101607&w=2 HPdes Security Advisory: HPSBUX02465 http://marc.info/?l=bugtraq&m=125631037611762&w=2 HPdes Security Advisory: SSRT090085 HPdes Security Advisory: SSRT090192 http://www.mandriva.com/security/advisories?name=MDVSA-2009:021 http://www.mandriva.com/security/advisories?name=MDVSA-2009:022 http://www.mandriva.com/security/advisories?name=MDVSA-2009:023 http://www.mandriva.com/security/advisories?name=MDVSA-2009:024 http://www.openwall.com/lists/oss-security/2008/08/08/2 http://www.openwall.com/lists/oss-security/2008/08/13/8 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9597 http://www.redhat.com/support/errata/RHSA-2009-0350.html http://www.securitytracker.com/id?1020994 http://secunia.com/advisories/31982 http://secunia.com/advisories/32148 http://secunia.com/advisories/32746 http://secunia.com/advisories/35074 http://secunia.com/advisories/35306 http://secunia.com/advisories/35650 SuSE Security Announcement: SUSE-SR:2008:018 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2008-09/msg00004.html http://www.vupen.com/english/advisories/2008/2336 http://www.vupen.com/english/advisories/2009/1297 XForce ISS Database: php-curl-unspecified(44402) https://exchange.xforce.ibmcloud.com/vulnerabilities/44402
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.