|Category:||Web application abuses|
|Title:||PHP Multiple Vulnerabilities - Dec19 (Linux)|
|Summary:||This host is installed with PHP and is prone; to multiple security vulnerabilities.|
This host is installed with PHP and is prone
to multiple security vulnerabilities.
The flaws exist due to,
- the imap_open functions which allows to run arbitrary shell commands via mailbox parameter.
- a Heap Buffer Overflow (READ: 4) in phar_parse_pharfile.
Successful exploitation will allow remote
attackers to execute remote code on affected application/system.
PHP versions 5.x before 5.6.39, 7.0.x before 7.0.33, 7.1.x before 7.1.25
and 7.2.x before 7.2.13.
Update to version 5.6.39, 7.0.33, 7.1.25, 7.2.13, 7.3.0 or later.
BugTraq ID: 106018|
Common Vulnerability Exposure (CVE) ID: CVE-2018-19518
|Copyright||Copyright (C) 2018 Greenbone Networks GmbH|
|This is only one of 71225 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.