ID de Prueba:	1.3.6.1.4.1.25623.1.0.100601
Categoría:	Web application abuses
Título:	PHP < 4.4.5 Integer Overflow Vulnerability
Resumen:	PHP is prone to an integer overflow vulnerability because it; fails to ensure that integer values aren't overrun. Attackers may exploit this issue to cause a; heap-based buffer overflow.
Descripción:	Summary: PHP is prone to an integer overflow vulnerability because it fails to ensure that integer values aren't overrun. Attackers may exploit this issue to cause a heap-based buffer overflow. Vulnerability Impact: Exploiting this issue may allow attackers to execute arbitrary machine code in the context of the affected application. Failed exploit attempts will likely result in a denial-of-service condition. Affected Software/OS: PHP versions prior to 4.4.5. Solution: Update to version 4.4.5 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2007-1777 BugTraq ID: 23169 http://www.securityfocus.com/bid/23169 Debian Security Information: DSA-1282 (Google Search) http://www.debian.org/security/2007/dsa-1282 Debian Security Information: DSA-1283 (Google Search) http://www.debian.org/security/2007/dsa-1283 http://www.mandriva.com/security/advisories?name=MDVSA-2008:130 http://www.php-security.org/MOPB/MOPB-35-2007.html http://secunia.com/advisories/25025 http://secunia.com/advisories/25062 XForce ISS Database: php-zipreadentry-bo(33652) https://exchange.xforce.ibmcloud.com/vulnerabilities/33652
Copyright	Copyright (C) 2010 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.