FreeBSD Ports: Php5-imap Network Vulnerability

Summary

The remote host is missing an update to the system as announced in the referenced advisory.

Solution

Update your system with the appropriate patches or software upgrades. http://www.php.net/releases/5_3_4.php http://www.php.net/releases/5_2_15.php http://www.vuxml.org/freebsd/1a0704e7-0edf-11e0-becc-0022156e8794.html

Insight

The following packages are affected: php5-imap php52-imap CVE-2010-4150 Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.

Severity

Classification

CVE CVE-2010-4150

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:N/I:N/A:P

Related Vulnerabilities

FreeBSD Ports: bogofilter
FreeBSD Ports: coppermine
FreeBSD Ports: bogofilter, bogofilter-qdbm, bogofilter-tdb, ru-bogofilter
django -- multiple vulnerabilities
FreeBSD Ports: apr1

FreeBSD Ports: php5-imap

Take action and discover your vulnerabilities