10

CVE-2012-2376

Exploit

Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.

Data is provided by the National Vulnerability Database (NVD)
PhpPhp Version <= 5.4.3
   MicrosoftWindows
PhpPhp Version1.0
   MicrosoftWindows
PhpPhp Version2.0
   MicrosoftWindows
PhpPhp Version2.0b10
   MicrosoftWindows
PhpPhp Version3.0
   MicrosoftWindows
PhpPhp Version3.0.1
   MicrosoftWindows
PhpPhp Version3.0.2
   MicrosoftWindows
PhpPhp Version3.0.3
   MicrosoftWindows
PhpPhp Version3.0.4
   MicrosoftWindows
PhpPhp Version3.0.5
   MicrosoftWindows
PhpPhp Version3.0.6
   MicrosoftWindows
PhpPhp Version3.0.7
   MicrosoftWindows
PhpPhp Version3.0.8
   MicrosoftWindows
PhpPhp Version3.0.9
   MicrosoftWindows
PhpPhp Version3.0.10
   MicrosoftWindows
PhpPhp Version3.0.11
   MicrosoftWindows
PhpPhp Version3.0.12
   MicrosoftWindows
PhpPhp Version3.0.13
   MicrosoftWindows
PhpPhp Version3.0.14
   MicrosoftWindows
PhpPhp Version3.0.15
   MicrosoftWindows
PhpPhp Version3.0.16
   MicrosoftWindows
PhpPhp Version3.0.17
   MicrosoftWindows
PhpPhp Version3.0.18
   MicrosoftWindows
PhpPhp Version4.0 Updatebeta_4_patch1
   MicrosoftWindows
PhpPhp Version4.0 Updatebeta1
   MicrosoftWindows
PhpPhp Version4.0 Updatebeta2
   MicrosoftWindows
PhpPhp Version4.0 Updatebeta3
   MicrosoftWindows
PhpPhp Version4.0 Updatebeta4
   MicrosoftWindows
PhpPhp Version4.0.0
   MicrosoftWindows
PhpPhp Version4.0.1
   MicrosoftWindows
PhpPhp Version4.0.2
   MicrosoftWindows
PhpPhp Version4.0.3
   MicrosoftWindows
PhpPhp Version4.0.4
   MicrosoftWindows
PhpPhp Version4.0.5
   MicrosoftWindows
PhpPhp Version4.0.6
   MicrosoftWindows
PhpPhp Version4.0.7
   MicrosoftWindows
PhpPhp Version4.1.0
   MicrosoftWindows
PhpPhp Version4.1.1
   MicrosoftWindows
PhpPhp Version4.1.2
   MicrosoftWindows
PhpPhp Version4.2.0
   MicrosoftWindows
PhpPhp Version4.2.1
   MicrosoftWindows
PhpPhp Version4.2.2
   MicrosoftWindows
PhpPhp Version4.2.3
   MicrosoftWindows
PhpPhp Version4.3.0
   MicrosoftWindows
PhpPhp Version4.3.1
   MicrosoftWindows
PhpPhp Version4.3.2
   MicrosoftWindows
PhpPhp Version4.3.3
   MicrosoftWindows
PhpPhp Version4.3.4
   MicrosoftWindows
PhpPhp Version4.3.5
   MicrosoftWindows
PhpPhp Version4.3.6
   MicrosoftWindows
PhpPhp Version4.3.7
   MicrosoftWindows
PhpPhp Version4.3.8
   MicrosoftWindows
PhpPhp Version4.3.9
   MicrosoftWindows
PhpPhp Version4.3.10
   MicrosoftWindows
PhpPhp Version4.3.11
   MicrosoftWindows
PhpPhp Version4.4.0
   MicrosoftWindows
PhpPhp Version4.4.1
   MicrosoftWindows
PhpPhp Version4.4.2
   MicrosoftWindows
PhpPhp Version4.4.3
   MicrosoftWindows
PhpPhp Version4.4.4
   MicrosoftWindows
PhpPhp Version4.4.5
   MicrosoftWindows
PhpPhp Version4.4.6
   MicrosoftWindows
PhpPhp Version4.4.7
   MicrosoftWindows
PhpPhp Version4.4.8
   MicrosoftWindows
PhpPhp Version4.4.9
   MicrosoftWindows
PhpPhp Version5.0.0
   MicrosoftWindows
PhpPhp Version5.0.0 Updatebeta1
   MicrosoftWindows
PhpPhp Version5.0.0 Updatebeta2
   MicrosoftWindows
PhpPhp Version5.0.0 Updatebeta3
   MicrosoftWindows
PhpPhp Version5.0.0 Updatebeta4
   MicrosoftWindows
PhpPhp Version5.0.0 Updaterc1
   MicrosoftWindows
PhpPhp Version5.0.0 Updaterc2
   MicrosoftWindows
PhpPhp Version5.0.0 Updaterc3
   MicrosoftWindows
PhpPhp Version5.0.1
   MicrosoftWindows
PhpPhp Version5.0.2
   MicrosoftWindows
PhpPhp Version5.0.3
   MicrosoftWindows
PhpPhp Version5.0.4
   MicrosoftWindows
PhpPhp Version5.0.5
   MicrosoftWindows
PhpPhp Version5.1.0
   MicrosoftWindows
PhpPhp Version5.1.1
   MicrosoftWindows
PhpPhp Version5.1.2
   MicrosoftWindows
PhpPhp Version5.1.3
   MicrosoftWindows
PhpPhp Version5.1.4
   MicrosoftWindows
PhpPhp Version5.1.5
   MicrosoftWindows
PhpPhp Version5.1.6
   MicrosoftWindows
PhpPhp Version5.2.0
   MicrosoftWindows
PhpPhp Version5.2.1
   MicrosoftWindows
PhpPhp Version5.2.2
   MicrosoftWindows
PhpPhp Version5.2.3
   MicrosoftWindows
PhpPhp Version5.2.4
   MicrosoftWindows
PhpPhp Version5.2.5
   MicrosoftWindows
PhpPhp Version5.2.6
   MicrosoftWindows
PhpPhp Version5.2.7
   MicrosoftWindows
PhpPhp Version5.2.8
   MicrosoftWindows
PhpPhp Version5.2.9
   MicrosoftWindows
PhpPhp Version5.2.10
   MicrosoftWindows
PhpPhp Version5.2.11
   MicrosoftWindows
PhpPhp Version5.2.12
   MicrosoftWindows
PhpPhp Version5.2.13
   MicrosoftWindows
PhpPhp Version5.2.14
   MicrosoftWindows
PhpPhp Version5.2.15
   MicrosoftWindows
PhpPhp Version5.2.16
   MicrosoftWindows
PhpPhp Version5.2.17
   MicrosoftWindows
PhpPhp Version5.3.0
   MicrosoftWindows
PhpPhp Version5.3.1
   MicrosoftWindows
PhpPhp Version5.3.2
   MicrosoftWindows
PhpPhp Version5.3.3
   MicrosoftWindows
PhpPhp Version5.3.4
   MicrosoftWindows
PhpPhp Version5.3.5
   MicrosoftWindows
PhpPhp Version5.3.6
   MicrosoftWindows
PhpPhp Version5.3.7
   MicrosoftWindows
PhpPhp Version5.3.8
   MicrosoftWindows
PhpPhp Version5.3.9
   MicrosoftWindows
PhpPhp Version5.4.0
   MicrosoftWindows
PhpPhp Version5.4.1
   MicrosoftWindows
PhpPhp Version5.4.2
   MicrosoftWindows
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 25.02% 0.96
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 10 10 10
AV:N/AC:L/Au:N/C:C/I:C/A:C
CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.