英文漏洞报告解读(一)——PHP 5.4.x < 5.4.32 Multiple Vulnerabilities

最新推荐文章于 2023-07-09 01:06:06 发布
最新推荐文章于 2023-07-09 01:06:06 发布
阅读量707 收藏
点赞数
文章标签: php awk 运维
原文链接:http://www.cnblogs.com/Erma/p/9585039.html
版权
---------------------------------
Nessus扫描报告
----------------------------------------------------- ---------------------------------------------------------------------------------------------------------- High PHP 5.4.x < 5.4.32 Multiple Vulnerabilities Description According to its banner, the remote web server is running a version of PHP 5.4.x prior to 5.4.32. It is, therefore, affected by the following vulnerabilities : - LibGD contains a NULL pointer dereference flaw in its 'gdImageCreateFromXpm' function in the 'gdxpm.c' file. By using a specially crafted color mapping, a remote attacker could cause a denial of service. (CVE-2014-2497) - The original upstream patch for CVE-2013-7345 did not provide a complete solution. It is, therefore, still possible for a remote attacker to deploy a specially crafted input file to cause excessive resources to be used when trying to detect the file type using awk regular expression rules. This can cause a denial of service. (CVE-2014-3538) - An integer overflow flaw exists in the 'cdf.c' file. By using a specially crafted CDF file, a remote attacker could cause a denial of service. (CVE-2014-3587) - There are multiple buffer overflow flaws in the 'dns.c' file related to the 'dns_get_record' and 'dn_expand' functions. By using a specially crafted DNS record, a remote attacker could exploit these to cause a denial of service or execute arbitrary code. (CVE-2014-3597) - A flaw exists in the 'spl_dllist.c' file that may lead to a use-after-free condition in the SPL component when iterating over an object. An attacker could utilize this to cause a denial of service. (CVE-2014-4670) - A flaw exists in the 'spl_array.c' file that may lead to a use-after-free condition in the SPL component when handling the modification of objects while sorting. An attacker could utilize this to cause a denial of service. (CVE-2014-4698) - There exist multiple flaws in the GD component within the 'gd_ctx.c' file where user-supplied input is not properly validated to ensure that pathnames lack %00 sequences. By using specially crafted input, a remote attacker could overwrite arbitrary files. (CVE-2014-5120) Note that Nessus has not attempted to exploit these issues, but has instead relied only on the application's self-reported version number. Solution Upgrade to PHP version 5.4.32 or later. ----------------------------------------
漏洞报告中文对照:如有不妥之处欢迎指正
------------------------------------------------ ------------------------------------------------------------------------------------------------------------------------------------------------ 漏洞标题:PHP 5.4.x <5.4.32多个漏洞 漏洞类型:通用型 漏洞等级:高危 简要描述: 根据其版本,不再支持在远程主机上安装PHP。 缺乏支持意味着供应商不会发布该产品的新安全补丁。因此,它可能包含安全漏洞。 详细细节: 根据其标题,远程Web服务器在5.4.32之前运行PHP 5.4.x版本。因此,它受到以下漏洞的影响: - LibGD在'gdxpm.c'文件的'gdImageCreateFromXpm'函数中包含一个NULL指针解引用缺陷。 通过使用特制的颜色映射,远程攻击者可能会导致拒绝服务。 (CVE-2014-2497) - CVE-2013-7345 的原始上游补丁未提供完整的解决方案。因此,远程攻击者仍然可以部署特制的输入文件,以便在尝试使用awk正则表达式规则检测文件类型时使用过多的资源。这可能会导致拒绝服务。(CVE-2014-3538) - 'cdf.c'文件中存在整数溢出缺陷。通过使用特制的CDF文件,远程攻击者可能会导致拒绝服务。(CVE-2014-3587) - 'dns.c'文件中存在多个与'dns_get_record'和'dn_expand'函数相关的缓冲区溢出缺陷。通过使用特制的DNS记录,远程攻击者可以利用这些记录来导致拒绝服务或执行任意代码。(CVE-2014-3597) - 'spl_dllist.c'文件中存在一个缺陷,当在对象上进行迭代时,该缺陷可能导致SPL组件中的释放后使用条件。攻击者可以利用此漏洞导致拒绝服务。(CVE-2014-4670) - 'spl_array.c'文件中存在一个缺陷,当在排序时处理对象的修改时,这可能导致SPL组件中的释放后使用条件。攻击者可以利用此漏洞导致拒绝服务。(CVE-2014-4698) - 'gd_ctx.c'文件中的GD组件中存在多个缺陷,其中未正确验证用户提供的输入以确保路径名缺少%00序列。通过使用特制输入,远程攻击者可以覆盖任意文件。 (CVE-2014-5120) 修复方案:升级到PHP版本5.4.32或更高版本。

转载于:https://www.cnblogs.com/Erma/p/9585039.html

【rustdesk 】rfc5128 :跨NATs的P2P通信技术 和rdserver
突围
04-17 966
Endpoint-Independent Mapping NAT(简称EIM-NAT)是种NAT。BEHAVE 文档([BEH-UDP]、[BEH-TCP] 和 [BEH-ICMP])。应用程序和 NAT 设备,即 [NAT-PMP]、[NSIS-NSLP]、[SOCKS]、“Endpoint-Dependent Filtering”指的是“Address-文档中,指的是Traditional NAT [NAT-TRAD]。[RSIP]、[MIDCOM] 和 [UPNP] 超出了本文档的范围。
历年计算机科学领域中各大顶会的获奖文章 ICCV、AAAI、CVPR...
ghw15221836342的博客
01-12 4963
Original address: https://jeffhuang.com/best_paper_awards.html By Conference:   AAAI   ACL   CHI   CIKM   CVPR   FOCS   FSE   ICCV   ICML   ICSE   IJCAI   INFOCOM   KDD   MOBICOM   NSDI   OSDI   PLDI...
2018年网络犯罪常用漏洞前十(英文报告
04-13
2018年网络犯罪常用漏洞前十(英文报告)-----------------------------------------------------------------------------------------------------------------------------------------------------------------------
article2pdf (Wordpress plug-in) Multiple vulnerabilities(CVE-2019-1000031, CVE-2019-1010257)
weixin_33753003的博客
03-26 683
Product: article2pdf (Wordpress plug-in)Product Website: https://wordpress.org/plugins/article2pdf/Affected Versions: 0.24 and greaterThe following vulnerabilities were found in a code review of the p...
Multiple vulnerabilities in XAMPP
cnbird's blog
01-30 811
http://www.securityfocus.com/bid/37999/exploit Hello Bugtraq!I am continue informing you about multiple vulnerabilities in XAMPP.-----------------------------Advisory #7---------------------------
ncpfs, Multiple Vulnerabilities
cnbird's blog
03-14 781
============================================ ncpfs, Multiple Vulnerabilities March 5, 2010 CVE-2010-0788, CVE-2010-0790, CVE-2010-0791==============================================Descript
Characterizing, exploiting, and detecting DMA code injection vulnerabilities,Eurosys2021
m0_52857523的博客
02-24 4026
Characterizing, exploiting, and detecting DMA code injection vulnerabilities in the presence of an IOMMU,Eurosys2021 描述、利用和检测IOMMU存在的DMA代码注入漏洞 论文:https://tongtianta.site/oss//paper_pdf/c3e9e264-bca2-11eb-872a-00163e0d281a_1873068be61f6c567d68798658aad73f.p
WEB漏洞分类与定义指南
Macro2的博客
05-19 1937
WEB漏洞分类与定义指南 web vulnerability classification and definition guideline 前 言 本标准按照 本标准按照 GB/T1.1GB/T1.1GB/T1.1GB/T1.1 GB/T1.1 -2009 给出的规则起草 给出的规则起草 给出的规则起草 。 随着电信网和互联的发展,将不断补充完善安全防护体系相关标准。 随着电信网和互联的发展,将不断补充完善安全防护体系相关标准。 随着电信网和互联的发展,将不断补充完善安全防护体系相关标准。 随着电信网和.
USENIX Security 23 论文解读 # VulChecker: Graph-based Vulnerability Localization in Source Code
skysys的研究小屋
07-09 1724
基于AI实现的SAST实现漏洞检测、分类和精确定位
PHP5 Globals Vulnerability
cnbird's blog
07-18 856
http://securityvulns.com/Ldocument219.html PHP5 Globals Vulnerability: with ?GLOBALS[foobar] you can set the value of the un-initialized $foobar variable. PHP5 Globals Vulnerability Name            
nessus漏洞报告英文翻译中文脚本
IT工程师随手日记
03-10 1305
目前,大家对于nessus漏洞报告英文翻译中文的脚本有非常大的需求,目前我们有起维护脚本的群,并附带详细的操作文档,对于nessus最新版的插件包也有共享,欢迎大家加入我们。 Q群号,200172818 ...
php5.4.7 bug,PHP 5.5.7/5.4.23/5.3.28 紧急发布
weixin_35607952的博客
03-09 147
PHP 5.5.7/5.4.23/5.3.28紧急发布.2013-12-13..上个版本是2013-11-145.5.6/5.4.22。全部修正了个 OpenSSL的安全漏洞(CVE-2013-6420)5.3本来已停止常规开发也更新了。 总共修正了10几个Bug(包括Opcache的几个Bug)及安全漏洞。完全改进:Version 5.5.712-Dec-2013Core:Fixed bug...
php5.4.x缓冲区溢出,英文漏洞报告解读)——PHP 5.4.x < 5.4.32 Multiple Vulnerabilities...
weixin_36118143的博客
03-11 540
Nessus扫描报告---------------------------------------------------------------------------------------------------------------------------------------------------------------HighPHP 5.4.x < 5.4.32 Multi...
php5.4.x缓冲区溢出,CVE-2018-7584
weixin_33181159的博客
03-11 815
PHP(PHP:Hypertext Preprocessor,PHP:超文本预处理器)PHP Group和开放源代码社区共同维护的种开源的通用计算机脚本语言。该语言主要用于Web开发,支持多种数据库及操作系统。 PHP中的ext/standard/http_fopen_wrapper.c文件的‘php_stream_url_wrap_http_ex’函数存在栈缓冲区溢出漏洞。攻击者可利用该漏洞...
linux yassl 漏洞修复,CVE-2008-0226 CVE-2008-0227 Multiple vulnerabilities in yaSSL 1.7.5-漏洞情报、漏洞详情、安全漏洞...
weixin_27037521的博客
05-16 428
#######################################################################Luigi AuriemmaApplication: yaSSLhttp://www.yassl.comVersions: <= 1.7.5Platforms: Windows and *nixBugs: A] buff...
[waraxe-2013-SA#103] - Multiple Vulnerabilities in phpMyAdmin
cnbird's blog
04-27 919
Author: Janek Vind "waraxe" Date: 25. April 2013 Location: Estonia, Tartu Web: http://www.waraxe.us/advisory-103.html Description of vulnerable software: ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
kerna-lt-5.4.173
最新发布
01-22
### Linux Kernel Version 5.4.173 Details and Changelog The specific details of changes made within the Linux kernel version 5.4.173 can be found through official release notes or changelogs provided by maintainers of the kernel. Typically, these documents outline bug fixes, performance improvements, security patches, and new features introduced in that particular update. For a detailed view on what was included in this minor revision: - The stable updates are generally focused on addressing bugs identified since previous versions were released. - Security vulnerabilities discovered after the initial launch of earlier revisions under the same major branch (in this case, 5.4.x) would have been patched here as well[^1]. To inspect the exact modifications applied up until 5.4.173, one could review the commit history available via Git repositories hosting the Linux kernel source code. This allows developers to track down individual commits contributing towards stabilizing systems running on hardware supported by drivers present at this stage of development. Additionally, users interested in understanding how certain aspects perform better post-update might look into benchmark tests conducted around similar timeframes when such maintenance releases occur. However, direct references pertaining specifically to all alterations for 5.4.173 may not always exist outside core developer communications unless documented explicitly upon announcement. ```bash # To fetch information about a specific kernel version from git repository git clone https://github.com/torvalds/linux.git cd linux git log v5.4.172..v5.4.173 --oneline ```
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值