Lucene search
FreeBSD1E8031BE-4258-11DE-B67A-0030843D3802HistoryNov 28, 2008 - 12:00 a.m.
php -- ini database truncation inside dba_replace() function
2008-11-2800:00:00
vuxml.freebsd.org
9
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
EPSS
0.009
Percentile
83.1%
securityfocus research reports:
A bug that leads to the emptying of the INI file contents if
the database key was not found exists in PHP dba extension in
versions 5.2.6, 4.4.9 and earlier.
Function dba_replace() are not filtering strings key and value.
There is a possibility for the destruction of the file.
Related
openvas
openvas
FreeBSD Ports: php4-dba
2009-05-20 00:00:00
PHP dba_replace Denial of Service Vulnerability
2009-08-27 00:00:00
FreeBSD Ports: php4-dba
2009-05-20 00:00:00
cve
cve
CVE-2008-7068
2009-08-25 10:30:00
securityvulns
securityvulns
PHP dba_replace() DoS
2008-12-01 00:00:00
cvelist
cvelist
CVE-2008-7068
2009-08-25 10:00:00
nessus
nessus
prion
prion
Design/Logic Flaw
2009-08-25 10:30:00
ubuntucve
ubuntucve
CVE-2008-7068
2009-08-25 00:00:00
nvd
nvd
CVE-2008-7068
2009-08-25 10:30:00
ubuntu
ubuntu
PHP vulnerabilities
2009-11-26 00:00:00
CVSS2
6.4
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:P/A:P
EPSS
0.009
Percentile
83.1%
Related for 1E8031BE-4258-11DE-B67A-0030843D3802