TROYANOSYVIRUS
Retour aux CVEs

CVE-2011-1092

N/A

Description

Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.

Details CVE

Score CVSS v3.1N/A
Publie3/15/2011
Derniere modification4/29/2026
Sourcenvd
Observations honeypot0

Produits affectes

php:php

Faiblesses (CWE)

CWE-189

References

http://bugs.php.net/bug.php?id=54193(secalert@redhat.com)
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html(secalert@redhat.com)
http://marc.info/?l=bugtraq&m=133469208622507&w=2(secalert@redhat.com)
http://securityreason.com/securityalert/8130(secalert@redhat.com)
http://support.apple.com/kb/HT5002(secalert@redhat.com)
http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/ext/shmop/shmop.c?r1=306939&r2=309018&pathrev=309018(secalert@redhat.com)
http://www.exploit-db.com/exploits/16966(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:052(secalert@redhat.com)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:053(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2011/03/08/11(secalert@redhat.com)
http://www.openwall.com/lists/oss-security/2011/03/08/9(secalert@redhat.com)
http://www.php.net/ChangeLog-5.php(secalert@redhat.com)
http://www.php.net/archive/2011.php(secalert@redhat.com)
http://www.php.net/releases/5_3_6.php(secalert@redhat.com)
http://www.securityfocus.com/bid/46786(secalert@redhat.com)
http://www.vupen.com/english/advisories/2011/0744(secalert@redhat.com)
https://bugzilla.redhat.com/show_bug.cgi?id=683183(secalert@redhat.com)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65988(secalert@redhat.com)
http://bugs.php.net/bug.php?id=54193(af854a3a-2127-422b-91ae-364da2661108)
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html(af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=133469208622507&w=2(af854a3a-2127-422b-91ae-364da2661108)
http://securityreason.com/securityalert/8130(af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT5002(af854a3a-2127-422b-91ae-364da2661108)
http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/ext/shmop/shmop.c?r1=306939&r2=309018&pathrev=309018(af854a3a-2127-422b-91ae-364da2661108)
http://www.exploit-db.com/exploits/16966(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:052(af854a3a-2127-422b-91ae-364da2661108)
http://www.mandriva.com/security/advisories?name=MDVSA-2011:053(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2011/03/08/11(af854a3a-2127-422b-91ae-364da2661108)
http://www.openwall.com/lists/oss-security/2011/03/08/9(af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/ChangeLog-5.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/archive/2011.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/releases/5_3_6.php(af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/46786(af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2011/0744(af854a3a-2127-422b-91ae-364da2661108)
https://bugzilla.redhat.com/show_bug.cgi?id=683183(af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/65988(af854a3a-2127-422b-91ae-364da2661108)

Correlations IOC

Aucune correlation enregistree

This product uses data from the NVD API but is not endorsed or certified by the NVD.