PHP Versions Prior To 5.3.3/5.2.14 Multiple Vulnerabilities Network Vulnerability

Summary

PHP is prone to multiple security vulnerabilities. An attacker can exploit these issues to execute arbitrary code, crash the affected application, gain access to sensitive information and bypass security restrictions. Other attacks are also possible. These issues affect the following: PHP 5.3 (Prior to 5.3.3) PHP 5.2 (Prior to 5.2.14)

Solution

Updates are available. Please see the references for more information.

References

http://www.php.net/
http://www.php.net/ChangeLog-5.php#5.3.3
https://www.securityfocus.com/bid/41991

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2484, CVE-2010-2531

CVSS	Base Score: 5.0 AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Annuaire PHP 'sites_inscription.php' Cross Site Scripting Vulnerability
2532|Gigs Directory Traversal And SQL Injection Multiple Vulnerabilities
AdaptCMS 'init.php' Remote File Include Vulnerability
Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities
AMSI 'file' Parameter Directory Traversal Vulnerability

PHP Versions Prior to 5.3.3/5.2.14 Multiple Vulnerabilities

Take action and discover your vulnerabilities