Test ID:	1.3.6.1.4.1.25623.1.0.50476
Category:	Ubuntu Local Security Checks
Title:	Ubuntu 4.10 USN-40-1 (php4)
Summary:	NOSUMMARY
Description:	Description: The remote host is missing an update to php4 announced via advisory USN-40-1. Stefan Esser reported several buffer overflows in PHP's variable unserializing handling. These could allow an attacker to execute arbitrary code on the server with the PHP interpreter's privileges by sending specially crafted input strings (form data, cookie values, and similar). Additionally, Ilia Alshanetsky discovered a buffer overflow in the exif_read_data() function. Attackers could execute arbitrary code on the server by sending a JPEG image with a very long 'sectionname' value to PHP applications that support image uploads. The following packages are affected: libapache2-mod-php4 php4 php4-cgi Solution: The problem can be corrected by upgrading the affected package to version 4:4.3.8-3ubuntu7.1. After performing a standard system upgrade you need to reload the PHP module in the webserver by executing sudo /etc/init.d/apache2 reload to effect the necessary changes. http://lists.ubuntu.com/archives/ubuntu-security-announce/2004-December/000042.html Risk factor : Critical CVSS Score: 10.0
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2004-1019 Bugtraq: 20041215 Advisory 01/2004: Multiple vulnerabilities in PHP 4/5 (Google Search) http://marc.info/?l=bugtraq&m=110314318531298&w=2 https://bugzilla.fedora.us/show_bug.cgi?id=2344 HPdes Security Advisory: HPSBMA01212 http://www.securityfocus.com/advisories/9028 http://www.mandriva.com/security/advisories?name=MDKSA-2004:151 http://www.hardened-php.net/advisories/012004.txt http://msgs.securepoint.com/cgi-bin/get/bugtraq0412/157.html https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10511 http://www.redhat.com/support/errata/RHSA-2004-687.html http://www.redhat.com/support/errata/RHSA-2005-032.html http://www.redhat.com/support/errata/RHSA-2005-816.html SuSE Security Announcement: SUSE-SA:2005:002 (Google Search) http://www.novell.com/linux/security/advisories/2005_02_php4_mod_php4.html SuSE Security Announcement: SUSE-SU-2015:0365 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2015-02/msg00029.html SuSE Security Announcement: openSUSE-SU-2015:0325 (Google Search) http://lists.opensuse.org/opensuse-updates/2015-02/msg00079.html XForce ISS Database: php-unserialize-code-execution(18514) https://exchange.xforce.ibmcloud.com/vulnerabilities/18514 Common Vulnerability Exposure (CVE) ID: CVE-2004-1065 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10877 XForce ISS Database: php-exifreaddata-bo(18517) https://exchange.xforce.ibmcloud.com/vulnerabilities/18517
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.