Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2009-2626
HistoryDec 01, 2009 - 12:00 a.m.

CVE-2009-2626

2009-12-0100:00:00
ubuntu.com
ubuntu.com
9

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

EPSS

0.062

Percentile

93.6%

JSON

The zend_restore_ini_entry_cb function in zend_ini.c in PHP 5.3.0, 5.2.10,
and earlier versions allows context-specific attackers to obtain sensitive
information (memory contents) and cause a PHP crash by using the ini_set
function to declare a variable, then using the ini_restore function to
restore the variable.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchphp5< 5.1.2-1ubuntu3.18UNKNOWN
ubuntu8.04noarchphp5< 5.2.4-2ubuntu5.10UNKNOWN
ubuntu8.10noarchphp5< 5.2.6-2ubuntu4.6UNKNOWN
ubuntu9.04noarchphp5< 5.2.6.dfsg.1-3ubuntu4.5UNKNOWN
ubuntu9.10noarchphp5< 5.2.10.dfsg.1-2ubuntu6.4UNKNOWN

Related

prion 1
seebug 1
cve 1
packetstorm 1
cvelist 1
f5 2
redhatcve 1
nvd 1
openvas 8
nessus 10
ubuntu 1
debian 2
osv 1
gentoo 1
prion
prion
Information disclosure
2009-12-01 16:30:00
seebug
seebug
PHP ini_restore()内存信息泄露漏洞
2009-11-30 00:00:00
cve
cve
CVE-2009-2626
2022-10-03 16:24:08
packetstorm
packetstorm
PHP ini_restore Memory Disclosure
2009-12-04 00:00:00
cvelist
cvelist
CVE-2009-2626
2022-10-03 16:24:08
f5
f5
K13231 : PHP vulnerability CVE-2009-2626
2013-09-09 00:00:00
SOL13231 - PHP vulnerability CVE-2009-2626
2011-11-21 00:00:00
redhatcve
redhatcve
CVE-2009-2626
2015-10-30 10:18:04
nvd
nvd
CVE-2009-2626
2009-12-01 16:30:01
openvas
openvas
PHP Multiple Vulnerabilities (Dec 2009)
2009-12-04 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
Mandriva Update for php MDVSA-2010:008 (php)
2010-01-19 00:00:00
nessus
nessus
Mandriva Linux Security Advisory : php (MDVSA-2010:008)
2010-01-18 00:00:00
Ubuntu 6.06 LTS / 8.04 LTS / 8.10 / 9.04 / 9.10 : php5 vulnerabilities (USN-882-1)
2010-01-14 00:00:00
Debian DSA-1940-1 : php5 - multiple issues
2010-02-24 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-01-13 00:00:00
debian
debian
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
[SECURITY] [DSA-1940-1] New php5 packages fix several issues
2009-11-25 21:48:09
osv
osv
php5 - multiple issues
2009-11-25 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2010-01-05 00:00:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:N/A:P

EPSS

0.062

Percentile

93.6%

JSON
Related for UB:CVE-2009-2626
prion1seebug1cve1packetstorm1cvelist1f52redhatcve1nvd1openvas8nessus10ubuntu1debian2osv1gentoo1