ID de Prueba:	1.3.6.1.4.1.25623.1.0.804639
Categoría:	Web application abuses
Título:	PHP 5.x < 5.4.29, 5.5.x < 5.5.13 Multiple DoS Vulnerabilities (Jun 2014)
Resumen:	PHP is prone to multiple denial of service (DoS); vulnerabilities.
Descripción:	Summary: PHP is prone to multiple denial of service (DoS) vulnerabilities. Vulnerability Insight: The following flaws exist: - CVE-2014-0237: Infinite loop within the 'unpack_summary_info' function in src/cdf.c script. - CVE-2014-0238: An error within the 'cdf_read_property_info' function in src/cdf.c script. Vulnerability Impact: Successful exploitation will allow remote attackers to conduct denial of service attacks. Affected Software/OS: PHP version 5.x before 5.4.29 and 5.5.x before 5.5.13. Solution: Update to version 5.4.29, 5.5.13 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2014-0237 http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.html BugTraq ID: 67759 http://www.securityfocus.com/bid/67759 Debian Security Information: DSA-3021 (Google Search) http://www.debian.org/security/2014/dsa-3021 RedHat Security Advisories: RHSA-2014:1765 http://rhn.redhat.com/errata/RHSA-2014-1765.html RedHat Security Advisories: RHSA-2014:1766 http://rhn.redhat.com/errata/RHSA-2014-1766.html http://secunia.com/advisories/59061 http://secunia.com/advisories/59329 http://secunia.com/advisories/59418 http://secunia.com/advisories/60998 SuSE Security Announcement: SUSE-SU-2014:0869 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2014-07/msg00002.html Common Vulnerability Exposure (CVE) ID: CVE-2014-0238 BugTraq ID: 67765 http://www.securityfocus.com/bid/67765
Copyright	Copyright (C) 2014 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.