Описание
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | not-affected | 5.3.6-13ubuntu3.1 |
| hardy | not-affected | 5.2.4-2ubuntu5.17 |
| lucid | not-affected | 5.3.2-1ubuntu4.9 |
| maverick | not-affected | 5.3.3-1ubuntu9.5 |
| natty | not-affected | 5.3.5-1ubuntu7.2 |
| upstream | needs-triage |
Показывать по
EPSS
7.5 High
CVSS2
Связанные уязвимости
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __auto ...
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.
EPSS
7.5 High
CVSS2