Количество 32
Количество 32
CVE-2013-6420
The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function.
CVE-2013-6420
The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function.
CVE-2013-6420
The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP befor ...
GHSA-5xf9-hrqg-23cp
Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow."
BDU:2022-02620
Уязвимость функции _php_stream_scandir интерпретатора языка программирования PHP, позволяющая нарушителю выполнить произвольный код
GHSA-m6pq-hhvx-694c
The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function.
ELSA-2013-1813
ELSA-2013-1813: php53 and php security update (CRITICAL)
BDU:2022-02631
Уязвимость функции asn1_time_to_time_t (ext/openssl/openssl.c) интерпретатора языка программирования PHP, позволяющая нарушителю выполнить произвольный код
SUSE-SU-2015:1265-1
Security update for php53
SUSE-SU-2015:1018-1
Security update for php53
SUSE-SU-2015:0436-1
Security update for php53
SUSE-SU-2015:0370-1
Security update for php53
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2013-6420 The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function. | CVSS2: 7.5 | 47% Средний | почти 12 лет назад |
 | CVE-2013-6420 The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function. | CVSS2: 7.5 | 47% Средний | почти 12 лет назад |
| CVE-2013-6420 The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP befor ... | CVSS2: 7.5 | 47% Средний | почти 12 лет назад |
| GHSA-5xf9-hrqg-23cp Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an "overflow." | 33% Средний | больше 3 лет назад | |
 | BDU:2022-02620 Уязвимость функции _php_stream_scandir интерпретатора языка программирования PHP, позволяющая нарушителю выполнить произвольный код | CVSS3: 8.1 | 33% Средний | больше 13 лет назад |
| GHSA-m6pq-hhvx-694c The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function. | 47% Средний | больше 3 лет назад | |
| ELSA-2013-1813 ELSA-2013-1813: php53 and php security update (CRITICAL) | почти 12 лет назад | ||
| BDU:2022-02631 Уязвимость функции asn1_time_to_time_t (ext/openssl/openssl.c) интерпретатора языка программирования PHP, позволяющая нарушителю выполнить произвольный код | CVSS3: 5.6 | 47% Средний | почти 12 лет назад |
 | SUSE-SU-2015:1265-1 Security update for php53 | около 11 лет назад | ||
| SUSE-SU-2015:1018-1 Security update for php53 | около 11 лет назад | ||
| SUSE-SU-2015:0436-1 Security update for php53 | около 11 лет назад | ||
| SUSE-SU-2015:0370-1 Security update for php53 | около 11 лет назад |
Уязвимостей на страницу