Lucene search
Copyright (C) 2017 Greenbone AGOPENVAS:1361412562310811481HistoryJul 11, 2017 - 12:00 a.m.
PHP < 5.6.31, 7.0.x < 7.0.21, 7.1.x < 7.1.7 Multiple Vulnerabilities (Jul 2017) - Windows
2017-07-1100:00:00
Copyright (C) 2017 Greenbone AG
plugins.openvas.org
23
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
0.298 Low
EPSS
Percentile
97.0%
PHP is prone to multiple vulnerabilities.
# SPDX-FileCopyrightText: 2017 Greenbone AG
# Some text descriptions might be excerpted from (a) referenced
# source(s), and are Copyright (C) by the respective right holder(s).
#
# SPDX-License-Identifier: GPL-2.0-only
CPE = "cpe:/a:php:php";
if(description)
{
script_oid("1.3.6.1.4.1.25623.1.0.811481");
script_version("2024-02-23T14:36:45+0000");
script_cve_id("CVE-2017-7890", "CVE-2017-9224", "CVE-2017-9225", "CVE-2017-9226", "CVE-2017-9227",
"CVE-2017-9228", "CVE-2017-9229", "CVE-2017-11144", "CVE-2017-11145", "CVE-2017-11628",
"CVE-2017-12933");
script_tag(name:"cvss_base", value:"7.5");
script_tag(name:"cvss_base_vector", value:"AV:N/AC:L/Au:N/C:P/I:P/A:P");
script_tag(name:"last_modification", value:"2024-02-23 14:36:45 +0000 (Fri, 23 Feb 2024)");
script_tag(name:"severity_vector", value:"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H");
script_tag(name:"severity_origin", value:"NVD");
script_tag(name:"severity_date", value:"2022-07-20 16:38:00 +0000 (Wed, 20 Jul 2022)");
script_tag(name:"creation_date", value:"2017-07-11 19:28:21 +0530 (Tue, 11 Jul 2017)");
script_name("PHP < 5.6.31, 7.0.x < 7.0.21, 7.1.x < 7.1.7 Multiple Vulnerabilities (Jul 2017) - Windows");
script_tag(name:"summary", value:"PHP is prone to multiple vulnerabilities.");
script_tag(name:"vuldetect", value:"Checks if a vulnerable version is present on the target host.");
script_tag(name:"insight", value:"Multiple flaws are due to:
- An ext/date/lib/parse_date.c out-of-bounds read affecting the php_parse_date function.
- The openssl extension PEM sealing code did not check the return value of the OpenSSL sealing
function.
- lack of bounds checks in the date extension's timelib_meridian parsing code.
- A stack-based buffer overflow in the zend_ini_do_op() function in the 'Zend/zend_ini_parser.c'
script.
- The GIF decoding function gdImageCreateFromGifCtx in gd_gif_in.c in the GD Graphics Library
(aka libgd) does not zero colorMap arrays before use.
- Heap buffer overread (READ: 1) finish_nested_data from unserialize
- Add oniguruma upstream fix");
script_tag(name:"impact", value:"Successfully exploiting this issue allow remote attackers to leak
information from the interpreter, crash PHP interpreter and also disclose sensitive information.");
script_tag(name:"affected", value:"PHP versions before 5.6.31, 7.0.x before 7.0.21 and 7.1.x before
7.1.7.");
script_tag(name:"solution", value:"Update to version 5.6.31, 7.0.21, 7.1.7 or later.");
script_xref(name:"URL", value:"http://www.php.net/ChangeLog-5.php");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/99492");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/99550");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/99605");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/99612");
script_xref(name:"URL", value:"http://www.securityfocus.com/bid/99489");
script_xref(name:"URL", value:"http://www.php.net/ChangeLog-7.php");
script_tag(name:"solution_type", value:"VendorFix");
script_tag(name:"qod_type", value:"remote_banner");
script_copyright("Copyright (C) 2017 Greenbone AG");
script_category(ACT_GATHER_INFO);
script_family("Web application abuses");
script_dependencies("secpod_php_smb_login_detect.nasl", "gb_php_http_detect.nasl", "os_detection.nasl");
script_mandatory_keys("php/detected", "Host/runs_windows");
exit(0);
}
include("version_func.inc");
include("host_details.inc");
if(isnull(port = get_app_port(cpe:CPE)))
exit(0);
if(!infos = get_app_version_and_location(cpe:CPE, port:port, exit_no_version:TRUE))
exit(0);
vers = infos["version"];
loc = infos["location"];
if(version_is_less(version:vers, test_version:"5.6.31"))
fix = "5.6.31";
else if(version_in_range(version:vers, test_version:"7.0", test_version2:"7.0.20"))
fix = "7.0.21";
else if(vers =~ "^7\.1" && version_is_less(version:vers, test_version:"7.1.7"))
fix = "7.1.7";
if(fix) {
report = report_fixed_ver(installed_version:vers, fixed_version:fix, install_path:loc);
security_message(port:port, data:report);
exit(0);
}
exit(99);
Related
openvas
openvas
PHP < 5.6.31, 7.0.x < 7.0.21, 7.1.x < 7.1.7 Multiple Vulnerabilities (Jul 2017) - Linux
2017-07-11 00:00:00
Fedora Update for oniguruma FEDORA-2017-60997f0d14
2017-06-13 00:00:00
Fedora Update for oniguruma FEDORA-2017-e314044789
2017-09-28 00:00:00
nessus
nessus
Fedora 25 : oniguruma (2017-60997f0d14)
2017-06-12 00:00:00
PHP 7.0.x < 7.0.21 Multiple Vulnerabilities
2019-01-09 00:00:00
PHP 7.1.x < 7.1.7 Multiple Vulnerabilities
2019-01-09 00:00:00
fedora
fedora
[SECURITY] Fedora 26 Update: oniguruma-6.3.0-1.fc26
2017-06-09 20:18:08
[SECURITY] Fedora 25 Update: oniguruma-6.1.3-2.fc25
2017-06-10 10:39:07
[SECURITY] Fedora 24 Update: php-5.6.31-1.fc24
2017-07-19 01:49:32
altlinux
altlinux
Security fix for the ALT Linux 8 package oniguruma version 6.4.0-alt1
2017-07-12 00:00:00
mageia
mageia
Updated php and libgd packages fix security vulnerabilities
2017-08-08 01:16:24
amazon
amazon
Medium: php70
2017-08-03 20:38:00
Medium: php56
2017-08-17 18:16:00
Important: oniguruma
2023-10-12 15:09:00
osv
osv
libonig - security update
2017-05-28 00:00:00
php5 - security update
2018-01-08 00:00:00
php7.0 - security update
2018-01-08 00:00:00
slackware
slackware
[slackware-security] php
2017-07-08 00:39:45
hackerone
hackerone
debian
debian
[SECURITY] [DLA 958-1] libonig security update
2017-05-28 13:46:37
[SECURITY] [DSA 4081-1] php5 security update
2018-01-08 22:33:54
[SECURITY] [DSA 4080-1] php7.0 security update
2018-01-08 22:30:09
ubuntu
ubuntu
PHP vulnerabilities
2017-12-18 00:00:00
PHP vulnerabilities
2017-08-10 00:00:00
freebsd
freebsd
oniguruma -- multiple vulnerabilities
2017-07-06 00:00:00
ibm
ibm
Security Bulletin: Vulnerabilities in php53 affect IBM BladeCenter Advanced Management Module (AMM) (CVE-2017-9227, CVE-2017-9226, CVE-2017-9224)
2023-04-14 14:32:25
f5
f5
PHP vulnerabilities CVE-2017-9226 and CVE-2017-7890
2017-08-08 00:03:00
K01709026 : PHP vulnerabilities CVE-2017-7890 and CVE-2017-9226
2017-08-07 00:00:00
K75543432 : PHP vulnerability CVE-2017-11628
2017-11-06 00:00:00
suse
suse
Security update for php7 (important)
2017-08-30 19:30:52
Security update for php7 (important)
2017-09-04 12:07:53
photon
photon
veracode
veracode
Use After Free
2019-05-16 02:59:58
Information Disclosure
2019-05-16 02:59:59
Buffer Overflow
2019-05-16 02:59:59
redhat
redhat
prion
prion
nvd
nvd
redhatcve
redhatcve
cve
cve
ubuntucve
ubuntucve
debiancve
debiancve
cvelist
cvelist
alpinelinux
alpinelinux
CVE-2017-9229
2017-05-24 15:29:00
CVE-2017-9224
2017-05-24 15:29:00
checkpoint_advisories
checkpoint_advisories
Oniguruma Project Memory Corruption (CVE-2017-9226)
2020-09-24 00:00:00
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
9.8 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
7.8 High
AI Score
Confidence
High
0.298 Low
EPSS
Percentile
97.0%
Related for OPENVAS:1361412562310811481