Test Kennung:	1.3.6.1.4.1.25623.1.0.812073
Kategorie:	Buffer overflow
Titel:	PHP 'timelib_meridian' Heap Based Buffer Overflow Vulnerability - Linux
Zusammenfassung:	PHP is prone to a heap buffer overflow vulnerability.
Beschreibung:	Summary: PHP is prone to a heap buffer overflow vulnerability. Vulnerability Insight: The flaw exists due to an error in the date extension's 'timelib_meridian' handling of 'front of' and 'back of' directives. Vulnerability Impact: Successfully exploiting this issue allow attacker to execute arbitrary code with elevated privileges within the context of a privileged process. Affected Software/OS: PHP versions before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11 Solution: Update to PHP version 5.6.32, 7.0.25, 7.1.11, or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2017-16642 BugTraq ID: 101745 http://www.securityfocus.com/bid/101745 Debian Security Information: DSA-4080 (Google Search) https://www.debian.org/security/2018/dsa-4080 Debian Security Information: DSA-4081 (Google Search) https://www.debian.org/security/2018/dsa-4081 https://www.exploit-db.com/exploits/43133/ RedHat Security Advisories: RHSA-2018:1296 https://access.redhat.com/errata/RHSA-2018:1296 RedHat Security Advisories: RHSA-2019:2519 https://access.redhat.com/errata/RHSA-2019:2519 https://usn.ubuntu.com/3566-1/
Copyright	Copyright (C) 2017 Greenbone AG

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.