ID CVE-2012-0830
Summary The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.
References
Vulnerable Configurations
  • cpe:2.3:a:php:php:5.3.9:*:*:*:*:*:*:*
    cpe:2.3:a:php:php:5.3.9:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 09-01-2018 - 02:29)
Impact:
Exploitability:
CWE CWE-399
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
redhat via4
advisories
  • bugzilla
    id 786686
    title CVE-2012-0830 php: remote code exec flaw introduced in the CVE-2011-4885 hashdos fix
    oval
    AND
    • comment Red Hat Enterprise Linux 5 is installed
      oval oval:com.redhat.rhba:tst:20070331001
    • OR
      • AND
        • comment php53 is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092002
        • comment php53 is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196003
      • AND
        • comment php53-bcmath is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092040
        • comment php53-bcmath is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196015
      • AND
        • comment php53-cli is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092006
        • comment php53-cli is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196025
      • AND
        • comment php53-common is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092008
        • comment php53-common is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196023
      • AND
        • comment php53-dba is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092020
        • comment php53-dba is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196019
      • AND
        • comment php53-devel is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092042
        • comment php53-devel is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196033
      • AND
        • comment php53-gd is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092004
        • comment php53-gd is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196021
      • AND
        • comment php53-imap is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092024
        • comment php53-imap is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196005
      • AND
        • comment php53-intl is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092038
        • comment php53-intl is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196043
      • AND
        • comment php53-ldap is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092014
        • comment php53-ldap is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196031
      • AND
        • comment php53-mbstring is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092012
        • comment php53-mbstring is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196029
      • AND
        • comment php53-mysql is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092016
        • comment php53-mysql is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196013
      • AND
        • comment php53-odbc is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092022
        • comment php53-odbc is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196037
      • AND
        • comment php53-pdo is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092028
        • comment php53-pdo is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196011
      • AND
        • comment php53-pgsql is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092026
        • comment php53-pgsql is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196007
      • AND
        • comment php53-process is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092018
        • comment php53-process is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196027
      • AND
        • comment php53-pspell is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092030
        • comment php53-pspell is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196039
      • AND
        • comment php53-snmp is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092010
        • comment php53-snmp is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196009
      • AND
        • comment php53-soap is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092032
        • comment php53-soap is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196041
      • AND
        • comment php53-xml is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092036
        • comment php53-xml is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196035
      • AND
        • comment php53-xmlrpc is earlier than 0:5.3.3-1.el5_7.6
          oval oval:com.redhat.rhsa:tst:20120092034
        • comment php53-xmlrpc is signed with Red Hat redhatrelease key
          oval oval:com.redhat.rhsa:tst:20110196017
    rhsa
    id RHSA-2012:0092
    released 2012-02-02
    severity Critical
    title RHSA-2012:0092: php53 security update (Critical)
  • bugzilla
    id 786686
    title CVE-2012-0830 php: remote code exec flaw introduced in the CVE-2011-4885 hashdos fix
    oval
    OR
    • AND
      • comment Red Hat Enterprise Linux 4 is installed
        oval oval:com.redhat.rhba:tst:20070304001
      • OR
        • AND
          • comment php is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093002
          • comment php is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730003
        • AND
          • comment php-devel is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093028
          • comment php-devel is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730007
        • AND
          • comment php-domxml is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093020
          • comment php-domxml is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730021
        • AND
          • comment php-gd is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093012
          • comment php-gd is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730032
        • AND
          • comment php-imap is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093026
          • comment php-imap is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730009
        • AND
          • comment php-ldap is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093008
          • comment php-ldap is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730015
        • AND
          • comment php-mbstring is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093016
          • comment php-mbstring is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730025
        • AND
          • comment php-mysql is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093006
          • comment php-mysql is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730005
        • AND
          • comment php-ncurses is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093014
          • comment php-ncurses is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730027
        • AND
          • comment php-odbc is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093010
          • comment php-odbc is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730013
        • AND
          • comment php-pear is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093024
          • comment php-pear is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730035
        • AND
          • comment php-pgsql is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093022
          • comment php-pgsql is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730011
        • AND
          • comment php-snmp is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093004
          • comment php-snmp is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730023
        • AND
          • comment php-xmlrpc is earlier than 0:4.3.9-3.36
            oval oval:com.redhat.rhsa:tst:20120093018
          • comment php-xmlrpc is signed with Red Hat master key
            oval oval:com.redhat.rhsa:tst:20060730019
    • AND
      • comment Red Hat Enterprise Linux 5 is installed
        oval oval:com.redhat.rhba:tst:20070331001
      • OR
        • AND
          • comment php is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093031
          • comment php is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082003
        • AND
          • comment php-bcmath is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093057
          • comment php-bcmath is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082011
        • AND
          • comment php-cli is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093055
          • comment php-cli is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082019
        • AND
          • comment php-common is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093059
          • comment php-common is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082009
        • AND
          • comment php-dba is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093035
          • comment php-dba is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082007
        • AND
          • comment php-devel is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093063
          • comment php-devel is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082021
        • AND
          • comment php-gd is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093039
          • comment php-gd is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082035
        • AND
          • comment php-imap is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093061
          • comment php-imap is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082031
        • AND
          • comment php-ldap is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093047
          • comment php-ldap is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082029
        • AND
          • comment php-mbstring is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093065
          • comment php-mbstring is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082033
        • AND
          • comment php-mysql is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093049
          • comment php-mysql is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082025
        • AND
          • comment php-ncurses is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093041
          • comment php-ncurses is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082013
        • AND
          • comment php-odbc is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093043
          • comment php-odbc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082037
        • AND
          • comment php-pdo is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093037
          • comment php-pdo is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082027
        • AND
          • comment php-pgsql is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093067
          • comment php-pgsql is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082023
        • AND
          • comment php-snmp is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093033
          • comment php-snmp is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082017
        • AND
          • comment php-soap is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093053
          • comment php-soap is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082015
        • AND
          • comment php-xml is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093045
          • comment php-xml is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082039
        • AND
          • comment php-xmlrpc is earlier than 0:5.1.6-27.el5_7.5
            oval oval:com.redhat.rhsa:tst:20120093051
          • comment php-xmlrpc is signed with Red Hat redhatrelease key
            oval oval:com.redhat.rhsa:tst:20070082005
    • AND
      • OR
        • comment Red Hat Enterprise Linux 6 Client is installed
          oval oval:com.redhat.rhba:tst:20111656001
        • comment Red Hat Enterprise Linux 6 Server is installed
          oval oval:com.redhat.rhba:tst:20111656002
        • comment Red Hat Enterprise Linux 6 Workstation is installed
          oval oval:com.redhat.rhba:tst:20111656003
        • comment Red Hat Enterprise Linux 6 ComputeNode is installed
          oval oval:com.redhat.rhba:tst:20111656004
      • OR
        • AND
          • comment php is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093073
          • comment php is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195006
        • AND
          • comment php-bcmath is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093119
          • comment php-bcmath is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195048
        • AND
          • comment php-cli is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093101
          • comment php-cli is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195044
        • AND
          • comment php-common is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093121
          • comment php-common is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195010
        • AND
          • comment php-dba is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093075
          • comment php-dba is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195054
        • AND
          • comment php-devel is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093099
          • comment php-devel is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195032
        • AND
          • comment php-embedded is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093111
          • comment php-embedded is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195038
        • AND
          • comment php-enchant is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093083
          • comment php-enchant is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195026
        • AND
          • comment php-gd is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093105
          • comment php-gd is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195056
        • AND
          • comment php-imap is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093079
          • comment php-imap is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195040
        • AND
          • comment php-intl is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093109
          • comment php-intl is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195030
        • AND
          • comment php-ldap is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093085
          • comment php-ldap is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195046
        • AND
          • comment php-mbstring is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093087
          • comment php-mbstring is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195042
        • AND
          • comment php-mysql is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093077
          • comment php-mysql is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195008
        • AND
          • comment php-odbc is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093081
          • comment php-odbc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195020
        • AND
          • comment php-pdo is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093117
          • comment php-pdo is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195018
        • AND
          • comment php-pgsql is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093103
          • comment php-pgsql is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195014
        • AND
          • comment php-process is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093091
          • comment php-process is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195016
        • AND
          • comment php-pspell is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093107
          • comment php-pspell is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195028
        • AND
          • comment php-recode is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093093
          • comment php-recode is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195050
        • AND
          • comment php-snmp is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093123
          • comment php-snmp is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195036
        • AND
          • comment php-soap is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093097
          • comment php-soap is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195024
        • AND
          • comment php-tidy is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093115
          • comment php-tidy is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195012
        • AND
          • comment php-xml is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093089
          • comment php-xml is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195022
        • AND
          • comment php-xmlrpc is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093113
          • comment php-xmlrpc is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195052
        • AND
          • comment php-zts is earlier than 0:5.3.3-3.el6_2.6
            oval oval:com.redhat.rhsa:tst:20120093095
          • comment php-zts is signed with Red Hat redhatrelease2 key
            oval oval:com.redhat.rhsa:tst:20110195034
    rhsa
    id RHSA-2012:0093
    released 2012-02-02
    severity Critical
    title RHSA-2012:0093: php security update (Critical)
rpms
  • php53-0:5.3.3-1.el5_7.6
  • php53-bcmath-0:5.3.3-1.el5_7.6
  • php53-cli-0:5.3.3-1.el5_7.6
  • php53-common-0:5.3.3-1.el5_7.6
  • php53-dba-0:5.3.3-1.el5_7.6
  • php53-devel-0:5.3.3-1.el5_7.6
  • php53-gd-0:5.3.3-1.el5_7.6
  • php53-imap-0:5.3.3-1.el5_7.6
  • php53-intl-0:5.3.3-1.el5_7.6
  • php53-ldap-0:5.3.3-1.el5_7.6
  • php53-mbstring-0:5.3.3-1.el5_7.6
  • php53-mysql-0:5.3.3-1.el5_7.6
  • php53-odbc-0:5.3.3-1.el5_7.6
  • php53-pdo-0:5.3.3-1.el5_7.6
  • php53-pgsql-0:5.3.3-1.el5_7.6
  • php53-process-0:5.3.3-1.el5_7.6
  • php53-pspell-0:5.3.3-1.el5_7.6
  • php53-snmp-0:5.3.3-1.el5_7.6
  • php53-soap-0:5.3.3-1.el5_7.6
  • php53-xml-0:5.3.3-1.el5_7.6
  • php53-xmlrpc-0:5.3.3-1.el5_7.6
  • php-0:4.3.9-3.36
  • php-devel-0:4.3.9-3.36
  • php-domxml-0:4.3.9-3.36
  • php-gd-0:4.3.9-3.36
  • php-imap-0:4.3.9-3.36
  • php-ldap-0:4.3.9-3.36
  • php-mbstring-0:4.3.9-3.36
  • php-mysql-0:4.3.9-3.36
  • php-ncurses-0:4.3.9-3.36
  • php-odbc-0:4.3.9-3.36
  • php-pear-0:4.3.9-3.36
  • php-pgsql-0:4.3.9-3.36
  • php-snmp-0:4.3.9-3.36
  • php-xmlrpc-0:4.3.9-3.36
  • php-0:5.1.6-27.el5_7.5
  • php-bcmath-0:5.1.6-27.el5_7.5
  • php-cli-0:5.1.6-27.el5_7.5
  • php-common-0:5.1.6-27.el5_7.5
  • php-dba-0:5.1.6-27.el5_7.5
  • php-devel-0:5.1.6-27.el5_7.5
  • php-gd-0:5.1.6-27.el5_7.5
  • php-imap-0:5.1.6-27.el5_7.5
  • php-ldap-0:5.1.6-27.el5_7.5
  • php-mbstring-0:5.1.6-27.el5_7.5
  • php-mysql-0:5.1.6-27.el5_7.5
  • php-ncurses-0:5.1.6-27.el5_7.5
  • php-odbc-0:5.1.6-27.el5_7.5
  • php-pdo-0:5.1.6-27.el5_7.5
  • php-pgsql-0:5.1.6-27.el5_7.5
  • php-snmp-0:5.1.6-27.el5_7.5
  • php-soap-0:5.1.6-27.el5_7.5
  • php-xml-0:5.1.6-27.el5_7.5
  • php-xmlrpc-0:5.1.6-27.el5_7.5
  • php-0:5.3.3-3.el6_2.6
  • php-bcmath-0:5.3.3-3.el6_2.6
  • php-cli-0:5.3.3-3.el6_2.6
  • php-common-0:5.3.3-3.el6_2.6
  • php-dba-0:5.3.3-3.el6_2.6
  • php-devel-0:5.3.3-3.el6_2.6
  • php-embedded-0:5.3.3-3.el6_2.6
  • php-enchant-0:5.3.3-3.el6_2.6
  • php-gd-0:5.3.3-3.el6_2.6
  • php-imap-0:5.3.3-3.el6_2.6
  • php-intl-0:5.3.3-3.el6_2.6
  • php-ldap-0:5.3.3-3.el6_2.6
  • php-mbstring-0:5.3.3-3.el6_2.6
  • php-mysql-0:5.3.3-3.el6_2.6
  • php-odbc-0:5.3.3-3.el6_2.6
  • php-pdo-0:5.3.3-3.el6_2.6
  • php-pgsql-0:5.3.3-3.el6_2.6
  • php-process-0:5.3.3-3.el6_2.6
  • php-pspell-0:5.3.3-3.el6_2.6
  • php-recode-0:5.3.3-3.el6_2.6
  • php-snmp-0:5.3.3-3.el6_2.6
  • php-soap-0:5.3.3-3.el6_2.6
  • php-tidy-0:5.3.3-3.el6_2.6
  • php-xml-0:5.3.3-3.el6_2.6
  • php-xmlrpc-0:5.3.3-3.el6_2.6
  • php-zts-0:5.3.3-3.el6_2.6
refmap via4
apple APPLE-SA-2012-05-09-1
bid 51830
confirm
debian DSA-2403
hp
  • HPSBMU02786
  • HPSBUX02791
  • SSRT100856
  • SSRT100877
misc
mlist
  • [oss-security] 20120202 PHP remote code execution introduced via HashDoS fix
  • [oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix
osvdb 78819
sectrack 1026631
secunia
  • 47801
  • 47806
  • 47813
  • 48668
suse
  • SUSE-SU-2012:0411
  • openSUSE-SU-2012:0426
xf php-phpregistervariableex-code-exec(72911)
Last major update 09-01-2018 - 02:29
Published 06-02-2012 - 20:55
Back to Top