Summary
The host is running PHP and is prone to Denial of Service vulnerability.
Impact
Successful exploitation could allow attackers to execute arbitrary code corrupt files and cause denial of service.
Impact Level: Application
Solution
Upgrade to version 5.2.7 or later,
http://www.php.net/downloads.php
Insight
An error occurs in 'dba_replace()' function while processing malformed user supplied data containing a key with the NULL byte.
Affected
PHP 4.x and 5.2.6 on all running platform.
References
Severity
Classification
-
CVE CVE-2008-7068 -
CVSS Base Score: 6.4
AV:N/AC:L/Au:N/C:N/I:P/A:P
Related Vulnerabilities
- AyeView GIF Image Handling Denial of Service Vulnerability
- AVG Anti-Virus UPX Processing Denial of Service Vulnerability
- Firefox 'nsObserverList::FillObserverArray' DOS Vulnerability (Win)
- F-Secure Policy Manager Server fsmsh.dll module DoS
- ClamAV LZH File Unpacking Denial of Service Vulnerability (Win)