Summary
This host is running PHP and is prone to Denial of Service vulnerability.
Impact
Successful exploitation will allow attackers to cause Denial of Service in the victim's system.
Impact Level: Application
Solution
Upgrade to version 5.2.11 or later
http://www.php.net/downloads.php
Insight
An error occurs in popem 'API' function in TSRM/tsrm_win32.c, when running on certain Windows operating systems. It can be caused via a crafted 'e' or 'er' string in the second argument (aka mode), possibly related to the '_fdopen' function in the Microsoft C runtime library.
Affected
PHP version prior to 5.2.11 on Windows.
References
Severity
Classification
-
CVE CVE-2009-3294 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Apache Subversion 'mod_dav_svn' log REPORT Request DoS Vulnerability
- ejabberd 'client2server' Message Remote Denial of Service Vulnerability
- FreeSWITCH 'switch_regex.c' Multiple Buffer Overflow Vulnerabilities
- Apache Traffic Server HTTP Host Header Denial of Service Vulnerability
- Firefox Browser Libxul Memory Leak Remote DoS Vulnerability - Win