Description

This alert was generated using only banner information. It may be a false positive.

PHP have released an upgrade to address multiple vulnerabilities, including integer overflow issues that have been reported to affect PHP4 and bundled software.

Affected PHP versions (up to 4.3.2).

Remediation

Upgrade PHP to the latest version.

References

BID 8693

BUD 8696

PHP Homepage

Related Vulnerabilities

WordPress Plugin Category Order and Taxonomy Terms Order PHP Object Injection (1.5.2.2)

WordPress Plugin WP-FaceThumb 'pagination_wp_facethumb' Parameter Cross-Site Scripting (0.1)

SugarCRM Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') Vulnerability (CVE-2011-4833)

WebLogic CVE-2019-2647 Vulnerability (CVE-2019-2647)

MySQL CVE-2018-2813 Vulnerability (CVE-2018-2813)

Severity

High

Classification

CVE-2003-0860 CVE-2003-0861 CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Missing Update Code Execution Denial Of Service