CVE-2011-3189
- EPSS 4.21%
- Veröffentlicht 25.08.2011 14:22:48
- Zuletzt bearbeitet 16.06.2026 23:32:50
The crypt function in PHP 5.3.7, when the MD5 hash type is used, returns the value of the salt argument instead of the hashed string, which might allow remote attackers to bypass authentication via an arbitrary password, a different vulnerability tha...
- EPSS 19.14%
- Veröffentlicht 25.08.2011 14:22:47
- Zuletzt bearbeitet 16.06.2026 23:32:49
PHP before 5.3.7 does not properly check the return values of the malloc, calloc, and realloc library functions, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) or trigger a buffe...
- EPSS 5.15%
- Veröffentlicht 25.08.2011 14:22:44
- Zuletzt bearbeitet 16.06.2026 23:29:45
The (1) ZipArchive::addGlob and (2) ZipArchive::addPattern functions in ext/zip/php_zip.c in PHP 5.3.6 allow context-dependent attackers to cause a denial of service (application crash) via certain flags arguments, as demonstrated by (a) GLOB_ALTDIRF...
- EPSS 4.97%
- Veröffentlicht 25.08.2011 14:22:44
- Zuletzt bearbeitet 16.06.2026 23:31:25
crypt_blowfish before 1.1, as used in PHP before 5.3.7 on certain platforms, PostgreSQL before 8.4.9, and other products, does not properly handle 8-bit characters, which makes it easier for context-dependent attackers to determine a cleartext passwo...
CVE-2011-2202
- EPSS 19.24%
- Veröffentlicht 16.06.2011 23:55:04
- Zuletzt bearbeitet 16.06.2026 23:30:54
The rfc1867_post_handler function in main/rfc1867.c in PHP before 5.3.7 does not properly restrict filenames in multipart/form-data POST requests, which allows remote attackers to conduct absolute path traversal attacks, and possibly create or overwr...
CVE-2011-1938
- EPSS 22.72%
- Veröffentlicht 31.05.2011 20:55:05
- Zuletzt bearbeitet 16.06.2026 23:30:25
Stack-based buffer overflow in the socket_connect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow context-dependent attackers to execute arbitrary code via a long pathname for a UNIX socket.
CVE-2011-0441
- EPSS 0.34%
- Veröffentlicht 29.03.2011 18:55:01
- Zuletzt bearbeitet 16.06.2026 23:27:23
The Debian GNU/Linux /etc/cron.d/php5 cron job for PHP 5.3.5 allows local users to delete arbitrary files via a symlink attack on a directory under /var/lib/php5/.
CVE-2011-1464
- EPSS 2.8%
- Veröffentlicht 20.03.2011 02:00:04
- Zuletzt bearbeitet 16.06.2026 23:29:23
Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, might allow context-dependent attackers to cause a denial of service (application crash) via a small numerical value in the argumen...
- EPSS 5.7%
- Veröffentlicht 20.03.2011 02:00:04
- Zuletzt bearbeitet 16.06.2026 23:29:23
Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via a large integer in the first argument to the cal_from_jd function.
- EPSS 12.72%
- Veröffentlicht 20.03.2011 02:00:04
- Zuletzt bearbeitet 16.06.2026 23:29:24
Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via an invalid argument, a rela...