Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1938

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-1938
Last Modified 08 Feb 2012 11:05:47
Published 31 May 2011 04:55:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-1938

Summary

Stack-based buffer overflow in the socket_connect function in ext/sockets/sockets.c in PHP 5.3.3 through 5.3.6 might allow context-dependent attackers to execute arbitrary code via a long pathname for a UNIX socket.

Vulnerable Systems

Application

  • Php 5.3.3

  • Php 5.3.4

  • Php 5.3.5

  • Php 5.3.6


References

CONFIRM - http://svn.php.net/viewvc?view=revision&revision=311369

CONFIRM - http://svn.php.net/viewvc/php/php-src/trunk/ext/sockets/sockets.c?r1=311369&r2=311368&pathrev=311369

MLIST - [oss-security] 20110524 Re: CVE request: PHP socket_connect() - stack buffer overflow

MLIST - [oss-security] 20110523 CVE request: PHP socket_connect() - stack buffer overflow

XF - php-socketconnect-bo(67606)

BID - 49241

CONFIRM - http://www.php.net/ChangeLog-5.php#5.3.7

CONFIRM - http://www.php.net/archive/2011.php#id2011-08-18-1

EXPLOIT-DB - 17318

SREASON - 8294

SREASON - 8262

OSVDB - 72644

REDHAT - RHSA-2011:1423

MANDRIVA - MDVSA-2011:165

CONFIRM - http://support.apple.com/kb/HT5130

APPLE - APPLE-SA-2012-02-01-1

DEBIAN - DSA-2399

Related Patches

Apple 2012-02-01 Mac OS X Server 10.7.3 Update

Apple 2012-02-01 Mac OS X 10.7.3 Update

Apple 2012-02-01 Mac OS X Server 10.7.3 Combo Update

Apple 2012-02-01 Mac OS X 10.7.3 Combo Update

Apple 2012-02-01 Security Update 2012-001 v1.1 Server (Snow Leopard)

Apple 2012-02-01 Security Update 2012-001 v1.1 (Snow Leopard)

Red Hat 2011:1423-01 RHSA Moderate: php53 and php security update for RHEL 5 x86


Last Updated: 27 May 2016 10:56:26