English | Deutsch | Español
 
Home ▼
Home About Us Contact Us Privacy Partner Programs Testimonials In Press Mailing Lists Abuse Developer APIs
Bookkeeping
Online ▼
Home Free Trial FAQ
Open/Create Company File Accept an Invite Order/Renew
Security
Audits ▼
Home Dedicated audits Advanced audits Standard audits Recurring audits No Risk audits Desktop audits Basic audit Security Seal FAQ Price/Feature Summary Order New Tests All Tests Confidentiality Vulnerability search Run Audit Scheduler IP Permissions Audit Configuration Editor Scan Queue Reminder Notification Schedule Seal Reports Reports Style Editor
Managed
DNS ▼
About Order FAQ Acceptable Use Policy Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password
Network
Monitor ▼
Enterprise Package Advanced Package Standard Package Free Trial FAQ Price/Feature Summary Order/Renew Examples
Configure/Status Alert Profiles
Research
Reports ▼
Home FAQ Glossary Archive
 Login/Register 
 
 Vulnerability   
Search   		     Search 324607 CVE descriptions
and 146377 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.58310
Category:CGI abuses
Title:PHP < 4.4.1/5.1.0 Multiple Vulnerabilities
Summary:NOSUMMARY
Description:Description:

The remote host is vulnerable to numerous vulnerabilities including
susceptibility to DoS attacks and the bypassing of safe_mode
restrictions.

Versions prior to 5.1 or 4.4.1 are vulnerable.

Solution : Upgrade to PHP 5.1/4.4.1 or later.

Risk factor : High

CVSS Score:
7.5

Cross-Ref: BugTraq ID: 15413
BugTraq ID: 15411
BugTraq ID: 15358
Common Vulnerability Exposure (CVE) ID: CVE-2005-3392
http://lists.apple.com/archives/security-announce/2006/Mar/msg00000.html
http://www.securityfocus.com/bid/15413
BugTraq ID: 16907
http://www.securityfocus.com/bid/16907
Cert/CC Advisory: TA06-062A
http://www.us-cert.gov/cas/techalerts/TA06-062A.html
http://www.gentoo.org/security/en/glsa/glsa-200511-08.xml
HPdes Security Advisory: HPSBMA02159
http://itrc.hp.com/service/cki/docDisplay.do?docId=c00786522
HPdes Security Advisory: SSRT061238
http://www.osvdb.org/20897
http://secunia.com/advisories/17371
http://secunia.com/advisories/17510
http://secunia.com/advisories/18054
http://secunia.com/advisories/18198
http://secunia.com/advisories/19064
http://secunia.com/advisories/22691
http://securityreason.com/securityalert/525
SuSE Security Announcement: SUSE-SA:2005:069 (Google Search)
http://www.securityfocus.com/archive/1/419504/100/0/threaded
https://www.ubuntu.com/usn/usn-232-1/
http://www.vupen.com/english/advisories/2005/2254
http://www.vupen.com/english/advisories/2006/0791
http://www.vupen.com/english/advisories/2006/4320
XForce ISS Database: php-virtual-bypass-security(22924)
https://exchange.xforce.ibmcloud.com/vulnerabilities/22924
Common Vulnerability Exposure (CVE) ID: CVE-2005-3391
http://www.securityfocus.com/bid/15411
http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2006:035
http://www.openpkg.org/security/OpenPKG-SA-2005.027-php.html
http://www.osvdb.org/20898
http://secunia.com/advisories/18763
Common Vulnerability Exposure (CVE) ID: CVE-2005-3353
15358
http://www.securityfocus.com/bid/15358
16907
17371
17490
http://secunia.com/advisories/17490
17531
http://secunia.com/advisories/17531
17557
http://secunia.com/advisories/17557
18054
18198
19064
22691
22713
http://secunia.com/advisories/22713
525
ADV-2006-0791
ADV-2006-4320
APPLE-SA-2006-03-01
DSA-1206
http://www.debian.org/security/2006/dsa-1206
FLSA:166943
http://www.fedoralegacy.org/updates/FC2/2005-11-28-FLSA_2005_166943__Updated_php_packages_fix_security_issues.html
HPSBMA02159
MDKSA-2005:213
http://www.mandriva.com/security/advisories?name=MDKSA-2005:213
OpenPKG-SA-2005.027
RHSA-2005:831
http://rhn.redhat.com/errata/RHSA-2005-831.html
SSRT061238
SUSE-SA:2005:069
TA06-062A
TLSA-2006-38
http://www.turbolinux.com/security/2006/TLSA-2006-38.txt
USN-232-1
http://bugs.php.net/bug.php?id=34704
http://docs.info.apple.com/article.html?artnum=303382
http://www.php.net/ChangeLog-4.php#4.4.1
oval:org.mitre.oval:def:11032
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11032
php-exif-dos(24351)
https://exchange.xforce.ibmcloud.com/vulnerabilities/24351
CopyrightCopyright (c) 2007 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.



© 1998-2025 E-Soft Inc. All rights reserved.