ID de Prueba:	1.3.6.1.4.1.25623.1.0.812073
Categoría:	Buffer overflow
Título:	PHP 'timelib_meridian' Heap Based Buffer Overflow Vulnerability - Linux
Resumen:	PHP is prone to a heap buffer overflow vulnerability.
Descripción:	Summary: PHP is prone to a heap buffer overflow vulnerability. Vulnerability Insight: The flaw exists due to an error in the date extension's 'timelib_meridian' handling of 'front of' and 'back of' directives. Vulnerability Impact: Successfully exploiting this issue allow attacker to execute arbitrary code with elevated privileges within the context of a privileged process. Affected Software/OS: PHP versions before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11 Solution: Update to PHP version 5.6.32, 7.0.25, 7.1.11, or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2017-16642 BugTraq ID: 101745 http://www.securityfocus.com/bid/101745 Debian Security Information: DSA-4080 (Google Search) https://www.debian.org/security/2018/dsa-4080 Debian Security Information: DSA-4081 (Google Search) https://www.debian.org/security/2018/dsa-4081 https://www.exploit-db.com/exploits/43133/ RedHat Security Advisories: RHSA-2018:1296 https://access.redhat.com/errata/RHSA-2018:1296 RedHat Security Advisories: RHSA-2019:2519 https://access.redhat.com/errata/RHSA-2019:2519 https://usn.ubuntu.com/3566-1/
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 145615 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.