Test ID:	1.3.6.1.4.1.25623.1.0.803678
Category:	Web application abuses
Title:	PHP Multiple Vulnerabilities (Jun 2013) - Windows
Summary:	PHP is prone to multiple vulnerabilities.
Description:	Summary: PHP is prone to multiple vulnerabilities. Vulnerability Insight: Multiple flaws are due to: - Heap-based overflow in 'php_quot_print_encode' function in 'ext/standard/quot_print.c' script. - Integer overflow in the 'SdnToJewish' function in 'jewish.c' in the Calendar component. Vulnerability Impact: Successful exploitation allows attackers to execute arbitrary code or cause denial of service condition via crafted arguments. Affected Software/OS: PHP version before 5.3.26 and 5.4.x before 5.4.16 Solution: Update to PHP 5.4.16 or 5.3.26 or later. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2013-4635 http://www.securitytracker.com/id/1028699 http://secunia.com/advisories/54104 SuSE Security Announcement: SUSE-SU-2013:1285 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-07/msg00034.html SuSE Security Announcement: SUSE-SU-2013:1315 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00006.html SuSE Security Announcement: SUSE-SU-2013:1316 (Google Search) http://lists.opensuse.org/opensuse-security-announce/2013-08/msg00007.html http://www.ubuntu.com/usn/USN-1905-1 http://www.attrition.org/pipermail/vim/2013-June/002697.html Common Vulnerability Exposure (CVE) ID: CVE-2013-2110 60411 http://www.securityfocus.com/bid/60411 APPLE-SA-2013-09-12-1 http://lists.apple.com/archives/security-announce/2013/Sep/msg00002.html USN-1872-1 http://www.ubuntu.com/usn/USN-1872-1 http://support.apple.com/kb/HT5880 http://www.php.net/ChangeLog-5.php https://bugs.php.net/bug.php?id=64879
Copyright	Copyright (C) 2013 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.