Lucene search
Ubuntu.comUB:CVE-2012-0807HistoryJan 27, 2012 - 12:00 a.m.
CVE-2012-0807
2012-01-2700:00:00
ubuntu.com
ubuntu.com
17
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.054
Percentile
93.3%
Stack-based buffer overflow in the suhosin_encrypt_single_cookie function
in the transparent cookie-encryption feature in the Suhosin extension
before 0.9.33 for PHP, when suhosin.cookie.encrypt and suhosin.multiheader
are enabled, might allow remote attackers to execute arbitrary code via a
long string that is used in a Set-Cookie HTTP header.
Bugs
Related
cvelist
cvelist
CVE-2012-0807
2012-01-27 00:00:00
nvd
nvd
CVE-2012-0807
2012-01-27 00:55:01
cve
cve
CVE-2012-0807
2012-01-27 00:55:01
prion
prion
Stack overflow
2012-01-27 00:55:00
nessus
nessus
SuSE 11.2 Security Update : PHP5 (SAT Patch Number 5958)
2012-04-06 00:00:00
Mandriva Linux Security Advisory : php (MDVSA-2012:065)
2012-04-27 00:00:00
SuSE 10 Security Update : PHP5 (ZYPP Patch Number 8009)
2012-03-26 00:00:00
suse
suse
Security update for PHP5 (important)
2012-04-06 03:08:16
Security update for PHP5 (important)
2012-03-24 03:08:28
update for php5 (important)
2012-03-29 15:08:14
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2012:0472-1)
2021-06-09 00:00:00
Mandriva Update for php MDVSA-2012:065 (php)
2012-08-03 00:00:00
Mandriva Update for php MDVSA-2012:065 (php)
2012-08-03 00:00:00
securityvulns
securityvulns
[ MDVSA-2012:065 ] php
2012-05-01 00:00:00
[ MDVSA-2012:071 ] php
2012-05-14 00:00:00
gentoo
gentoo
Multiple packages, Multiple vulnerabilities fixed in 2012
2014-12-11 00:00:00
CVSS2
5.1
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:H/Au:N/C:P/I:P/A:P
EPSS
0.054
Percentile
93.3%
Related for UB:CVE-2012-0807