Anfälligkeitssuche        Suche in 172616 CVE Beschreibungen
und 81291 Test Beschreibungen,
Zugriff auf 10,000+ Quellverweise.
Tests   CVE   Alle  

Test Kennung:
Kategorie:Red Hat Local Security Checks
Titel:RedHat Security Advisory RHSA-2006:0708

The remote host is missing updates announced in
advisory RHSA-2006:0708.

PHP is an HTML-embedded scripting language commonly used with the Apache
HTTP Web server.

An integer overflow was discovered in the PHP memory handling routines. If
a script can cause memory allocation based on untrusted user data, a remote
attacker sending a carefully crafted request could execute arbitrary code
as the 'apache' user. (CVE-2006-4812)

This issue did not affect the PHP packages distributed with Red Hat
Enterprise Linux 3 or 4.

Users of PHP should upgrade to these updated packages which contain a
backported patch that corrects this issue.

Please note that this update is available via
Red Hat Network. To use Red Hat Network, launch the Red
Hat Update Agent with the following command: up2date

Risk factor : Critical

CVSS Score:

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2006-4812
BugTraq ID: 20349
Bugtraq: 20061009 Advisory 09/2006: PHP unserialize() Array Creation Integer Overflow (Google Search)
RedHat Security Advisories: RHSA-2006:0688
RedHat Security Advisories: RHSA-2006:0708
SuSE Security Announcement: SUSE-SA:2006:059 (Google Search)
XForce ISS Database: php-ecalloc-integer-overflow(29362)
CopyrightCopyright (c) 2006 E-Soft Inc.

Dies ist nur einer von 81291 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.

Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

© 1998-2020 E-Soft Inc. Alle Rechte vorbehalten.