Download
| Alert*
|
oval:org.secpod.oval:def:2233
The host is installed with PHP before 5.3.7 and is prone to denial of service vulnerability. A flaw is present in the application, which fails to properly implement the error_log function. Successful exploitation allows attackers to cause an application crash. oval:org.secpod.oval:def:600730 Several vulnerabilities have been discovered in PHP, the web scripting language. The Common Vulnerabilities and Exposures project identifies the following issues: CVE-2011-1072 It was discoverd that insecure handling of temporary files in the PEAR installer could lead to denial of service. CVE-2011- ... oval:org.secpod.oval:def:3904 The host is installed with Apple Mac OS X 10.6.8 or 10.7.x before 10.7.3 and is prone to a denial of service vulnerability. The flaw is present in the application, which fails to properly implement the error_log function. Successful exploitation could allow attackers to crash the service. oval:org.secpod.oval:def:1300027 This is a bugfix and security advisory that upgrades php to the latest 5.3.13 version for Mandriva Linux Enterprise 5.2 which resolves numerous upstream bugs in php. Please refer to the following Mandriva advisories for further information: MDVA-2012:004, MDVSA-2011:165, MDVSA-2011:166, MDVSA-2011:1 ... oval:org.secpod.oval:def:301125 Multiple vulnerabilities has been identified and fixed in php: Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact by using the same variable for multiple argum ... oval:org.secpod.oval:def:3930 The host is missing a critical security update according to Apple advisory, APPLE-SA-2012-02-01-1. The update is required to fix multiple vulnerabilities. The flaws are present in the applications which fail to sanitize user supplied input. Successful exploitation could allow attackers to execute ar ... |
