Turbolinux Local Security Tests : Turbolinux TLSA-2003-9 (php)

Búsqueda de Vulnerabilidad		Buscar 324607 Descripciones CVE y 146377 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.52916

Categoría: Turbolinux Local Security Tests

Título: Turbolinux TLSA-2003-9 (php)

Resumen: NOSUMMARY

Descripción: Description:

The remote host is missing an update to php
announced via advisory TLSA-2003-9.

A heap-based buffer overflow was found in the wordwrap() function in PHP
versions after 4.1.2 and before 4.3.0.

This may allow remote attackers to cause a denial of service or execute arbitrary code.

Solution: Please use the turbopkg (zabom) tool to apply the update.
https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2003-9

Risk factor : High

CVSS Score:
7.5

Referencia Cruzada: BugTraq ID: 6488
Common Vulnerability Exposure (CVE) ID: CVE-2002-1396
http://www.securityfocus.com/bid/6488
Bugtraq: 20021227 Buffer overflow in PHP "wordwrap" function (Google Search)
http://marc.info/?l=bugtraq&m=104102689503192&w=2
En Garde Linux Advisory: ESA-20030219-003
http://archives.neohapsis.com/archives/linux/engarde/2003-q1/0003.html
http://www.securityfocus.com/advisories/4862
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:019
http://www.redhat.com/support/errata/RHSA-2003-017.html
SCO Security Bulletin: CSSA-2003-SCO.28
SuSE Security Announcement: SuSE-SA:2003:0009 (Google Search)
http://www.novell.com/linux/security/advisories/2003_009_mod_php4.html
XForce ISS Database: php-wordwrap-bo(10944)
https://exchange.xforce.ibmcloud.com/vulnerabilities/10944

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.52916
Categoría:	Turbolinux Local Security Tests
Título:	Turbolinux TLSA-2003-9 (php)
Resumen:	NOSUMMARY
Descripción:	Description: The remote host is missing an update to php announced via advisory TLSA-2003-9. A heap-based buffer overflow was found in the wordwrap() function in PHP versions after 4.1.2 and before 4.3.0. This may allow remote attackers to cause a denial of service or execute arbitrary code. Solution: Please use the turbopkg (zabom) tool to apply the update. https://secure1.securityspace.com/smysecure/catid.html?in=TLSA-2003-9 Risk factor : High CVSS Score: 7.5
Referencia Cruzada:	BugTraq ID: 6488 Common Vulnerability Exposure (CVE) ID: CVE-2002-1396 http://www.securityfocus.com/bid/6488 Bugtraq: 20021227 Buffer overflow in PHP "wordwrap" function (Google Search) http://marc.info/?l=bugtraq&m=104102689503192&w=2 En Garde Linux Advisory: ESA-20030219-003 http://archives.neohapsis.com/archives/linux/engarde/2003-q1/0003.html http://www.securityfocus.com/advisories/4862 http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:019 http://www.redhat.com/support/errata/RHSA-2003-017.html SCO Security Bulletin: CSSA-2003-SCO.28 SuSE Security Announcement: SuSE-SA:2003:0009 (Google Search) http://www.novell.com/linux/security/advisories/2003_009_mod_php4.html XForce ISS Database: php-wordwrap-bo(10944) https://exchange.xforce.ibmcloud.com/vulnerabilities/10944
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com