Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2009-4017
Description:PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict the number of temporary files created when handling a multipart/form-data POST request, which allows remote attackers to cause a denial of service (resource exhaustion), and makes it easier for remote attackers to exploit local file inclusion vulnerabilities, via multiple requests, related to lack of support for the max_file_uploads directive.
Test IDs:  
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-4017
Bugtraq: 20091120 PHP "multipart/form-data" denial of service (Google Search)
Debian Security Information: DSA-1940 (Google Search)
HPdes Security Advisory: HPSBMA02568
HPdes Security Advisory: HPSBUX02543
HPdes Security Advisory: SSRT100152
HPdes Security Advisory: SSRT100219
XForce ISS Database: php-multipart-formdata-dos(54455)

© 1998-2021 E-Soft Inc. All rights reserved.