Описание
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 5.5.12+dfsg-2ubuntu2 |
| esm-infra-legacy/trusty | released | 5.5.9+dfsg-1ubuntu4.1 |
| lucid | released | 5.3.2-1ubuntu4.25 |
| precise | released | 5.3.10-1ubuntu3.12 |
| saucy | released | 5.5.3+dfsg-1ubuntu2.4 |
| trusty | released | 5.5.9+dfsg-1ubuntu4.1 |
| trusty/esm | released | 5.5.9+dfsg-1ubuntu4.1 |
| upstream | released | 5.6.0~beta4+dfsg-3 |
Показывать по
EPSS
5.1 Medium
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
Heap-based buffer overflow in the php_parserr function in ext/standard ...
Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
Уязвимость программного обеспечения PHP, позволяющая удаленному злоумышленнику нарушить конфиденциальность, целостность и доступность защищаемой информации
EPSS
5.1 Medium
CVSS2