ID de Prueba:	1.3.6.1.4.1.25623.1.0.110013
Categoría:	Web application abuses
Título:	PHP 5.3 < 5.3.6 Multiple Vulnerabilities
Resumen:	PHP is prone to multiple vulnerabilities.
Descripción:	Summary: PHP is prone to multiple vulnerabilities. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2011-0421 http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html BugTraq ID: 46354 http://www.securityfocus.com/bid/46354 Bugtraq: 20110318 libzip 0.9.3 _zip_name_locate NULL Pointer Dereference (incl PHP 5.3.5) (Google Search) http://www.securityfocus.com/archive/1/517065/100/0/threaded Debian Security Information: DSA-2266 (Google Search) http://www.debian.org/security/2011/dsa-2266 http://www.exploit-db.com/exploits/17004 http://lists.fedoraproject.org/pipermail/package-announce/2011-March/056642.html http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057709.html http://lists.fedoraproject.org/pipermail/package-announce/2011-April/057710.html HPdes Security Advisory: HPSBOV02763 http://marc.info/?l=bugtraq&m=133469208622507&w=2 HPdes Security Advisory: SSRT100826 http://www.mandriva.com/security/advisories?name=MDVSA-2011:052 http://www.mandriva.com/security/advisories?name=MDVSA-2011:053 http://www.mandriva.com/security/advisories?name=MDVSA-2011:099 http://secunia.com/advisories/43621 http://securityreason.com/securityalert/8146 http://securityreason.com/achievement_securityalert/96 SuSE Security Announcement: SUSE-SR:2011:009 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2011-05/msg00005.html http://www.vupen.com/english/advisories/2011/0744 http://www.vupen.com/english/advisories/2011/0764 http://www.vupen.com/english/advisories/2011/0890 XForce ISS Database: libzip-zipnamelocate-dos(66173) https://exchange.xforce.ibmcloud.com/vulnerabilities/66173 Common Vulnerability Exposure (CVE) ID: CVE-2011-0708 16261 http://www.exploit-db.com/exploits/16261/ 46365 http://www.securityfocus.com/bid/46365 8114 http://securityreason.com/securityalert/8114 ADV-2011-0744 ADV-2011-0764 ADV-2011-0890 APPLE-SA-2011-10-12-3 DSA-2266 FEDORA-2011-3614 FEDORA-2011-3636 FEDORA-2011-3666 HPSBOV02763 MDVSA-2011:052 MDVSA-2011:053 RHSA-2011:1423 http://www.redhat.com/support/errata/RHSA-2011-1423.html RHSA-2012:0071 http://rhn.redhat.com/errata/RHSA-2012-0071.html SSRT100826 [oss-security] 20110214 PHP Exif 64bit Casting Vulnerability, CVE request http://openwall.com/lists/oss-security/2011/02/14/1 [oss-security] 20110216 Re: Re: PHP Exif 64bit Casting Vulnerability, CVE request http://openwall.com/lists/oss-security/2011/02/16/7 http://bugs.php.net/bug.php?id=54002 http://support.apple.com/kb/HT5002 http://svn.php.net/viewvc?view=revision&revision=308316 http://www.php.net/ChangeLog-5.php http://www.php.net/archive/2011.php http://www.php.net/releases/5_3_6.php https://bugzilla.redhat.com/show_bug.cgi?id=680972 Common Vulnerability Exposure (CVE) ID: CVE-2011-1092 16966 http://www.exploit-db.com/exploits/16966 46786 http://www.securityfocus.com/bid/46786 8130 http://securityreason.com/securityalert/8130 [oss-security] 20110308 CVE request, php's shm http://www.openwall.com/lists/oss-security/2011/03/08/9 [oss-security] 20110308 Re: CVE request, php's shm http://www.openwall.com/lists/oss-security/2011/03/08/11 http://bugs.php.net/bug.php?id=54193 http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/ext/shmop/shmop.c?r1=306939&r2=309018&pathrev=309018 https://bugzilla.redhat.com/show_bug.cgi?id=683183 php-shmopread-overflow(65988) https://exchange.xforce.ibmcloud.com/vulnerabilities/65988 Common Vulnerability Exposure (CVE) ID: CVE-2011-1153 43744 http://secunia.com/advisories/43744 46854 http://www.securityfocus.com/bid/46854 [oss-security] 20110314 CVE request: format-string vulnerability in PHP Phar extension http://openwall.com/lists/oss-security/2011/03/14/13 [oss-security] 20110314 Re: CVE request: format-string vulnerability in PHP Phar extension http://openwall.com/lists/oss-security/2011/03/14/14 http://openwall.com/lists/oss-security/2011/03/14/24 http://bugs.php.net/bug.php?id=54247 http://svn.php.net/viewvc?view=revision&revision=309221 https://bugzilla.redhat.com/show_bug.cgi?id=688378 php-pharobject-format-string(66079) https://exchange.xforce.ibmcloud.com/vulnerabilities/66079 Common Vulnerability Exposure (CVE) ID: CVE-2011-1464 Common Vulnerability Exposure (CVE) ID: CVE-2011-1466 BugTraq ID: 46967 http://www.securityfocus.com/bid/46967 RedHat Security Advisories: RHSA-2012:0071 http://secunia.com/advisories/48668 SuSE Security Announcement: openSUSE-SU-2012:0426 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html Common Vulnerability Exposure (CVE) ID: CVE-2011-1467 BugTraq ID: 46968 http://www.securityfocus.com/bid/46968 Common Vulnerability Exposure (CVE) ID: CVE-2011-1468 BugTraq ID: 46977 http://www.securityfocus.com/bid/46977 Common Vulnerability Exposure (CVE) ID: CVE-2011-1469 BugTraq ID: 46970 http://www.securityfocus.com/bid/46970 Common Vulnerability Exposure (CVE) ID: CVE-2011-1470 BugTraq ID: 46969 http://www.securityfocus.com/bid/46969
Copyright	Copyright (C) 2012 NopSec Inc.

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.