Vulnerability-Lookup

CVE-2012-0830 (GCVE-0-2012-0830)

Vulnerability from cvelistv5 – Published: 2012-02-06 20:00 – Updated: 2024-08-06 18:38

Summary

The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.

Severity ?

No CVSS data available.

CWE

Assigner

redhat

References

URL

Tags

	http://marc.info/?l=bugtraq&m=134012830914727&w=2	vendor-advisoryx_refsource_HP
	http://svn.php.net/viewvc?view=revision&revision=323007	x_refsource_CONFIRM
	http://h20000.www2.hp.com/bizsupport/TechSupport/…	vendor-advisoryx_refsource_HP
	http://thexploit.com/sec/critical-php-remote-vuln…	x_refsource_MISC
	http://www.securityfocus.com/bid/51830	vdb-entryx_refsource_BID
	http://rhn.redhat.com/errata/RHSA-2012-0092.html	vendor-advisoryx_refsource_REDHAT
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.osvdb.org/78819	vdb-entryx_refsource_OSVDB
	http://secunia.com/advisories/47806	third-party-advisoryx_refsource_SECUNIA
	http://lists.opensuse.org/opensuse-security-annou…	vendor-advisoryx_refsource_SUSE
	http://www.debian.org/security/2012/dsa-2403	vendor-advisoryx_refsource_DEBIAN
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/48668	third-party-advisoryx_refsource_SECUNIA
	http://www.php.net/ChangeLog-5.php#5.3.10	x_refsource_CONFIRM
	http://secunia.com/advisories/47801	third-party-advisoryx_refsource_SECUNIA
	http://openwall.com/lists/oss-security/2012/02/02/12	mailing-listx_refsource_MLIST
	http://openwall.com/lists/oss-security/2012/02/03/1	mailing-listx_refsource_MLIST
	http://h20000.www2.hp.com/bizsupport/TechSupport/…	vendor-advisoryx_refsource_HP
	http://securitytracker.com/id?1026631	vdb-entryx_refsource_SECTRACK
	http://marc.info/?l=bugtraq&m=134012830914727&w=2	vendor-advisoryx_refsource_HP
	http://www.h-online.com/security/news/item/Critic…	x_refsource_MISC
	http://support.apple.com/kb/HT5281	x_refsource_CONFIRM
	https://gist.github.com/1725489	x_refsource_MISC
	http://lists.apple.com/archives/security-announce…	vendor-advisoryx_refsource_APPLE
	http://secunia.com/advisories/47813	third-party-advisoryx_refsource_SECUNIA

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T18:38:14.779Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "SSRT100856",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
          },
          {
            "name": "HPSBMU02786",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
          },
          {
            "name": "51830",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/51830"
          },
          {
            "name": "RHSA-2012:0092",
            "tags": [
              "vendor-advisory",
              "x_refsource_REDHAT",
              "x_transferred"
            ],
            "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
          },
          {
            "name": "SUSE-SU-2012:0411",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
          },
          {
            "name": "78819",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/78819"
          },
          {
            "name": "47806",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47806"
          },
          {
            "name": "openSUSE-SU-2012:0426",
            "tags": [
              "vendor-advisory",
              "x_refsource_SUSE",
              "x_transferred"
            ],
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
          },
          {
            "name": "DSA-2403",
            "tags": [
              "vendor-advisory",
              "x_refsource_DEBIAN",
              "x_transferred"
            ],
            "url": "http://www.debian.org/security/2012/dsa-2403"
          },
          {
            "name": "php-phpregistervariableex-code-exec(72911)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
          },
          {
            "name": "48668",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/48668"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
          },
          {
            "name": "47801",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47801"
          },
          {
            "name": "[oss-security] 20120202 PHP remote code execution introduced via HashDoS fix",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
          },
          {
            "name": "[oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix",
            "tags": [
              "mailing-list",
              "x_refsource_MLIST",
              "x_transferred"
            ],
            "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
          },
          {
            "name": "SSRT100877",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
          },
          {
            "name": "1026631",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1026631"
          },
          {
            "name": "HPSBUX02791",
            "tags": [
              "vendor-advisory",
              "x_refsource_HP",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://support.apple.com/kb/HT5281"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "https://gist.github.com/1725489"
          },
          {
            "name": "APPLE-SA-2012-05-09-1",
            "tags": [
              "vendor-advisory",
              "x_refsource_APPLE",
              "x_transferred"
            ],
            "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
          },
          {
            "name": "47813",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/47813"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2012-02-02T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-01-08T20:57:01.000Z",
        "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
        "shortName": "redhat"
      },
      "references": [
        {
          "name": "SSRT100856",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
        },
        {
          "name": "HPSBMU02786",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
        },
        {
          "name": "51830",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/51830"
        },
        {
          "name": "RHSA-2012:0092",
          "tags": [
            "vendor-advisory",
            "x_refsource_REDHAT"
          ],
          "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
        },
        {
          "name": "SUSE-SU-2012:0411",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
        },
        {
          "name": "78819",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/78819"
        },
        {
          "name": "47806",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47806"
        },
        {
          "name": "openSUSE-SU-2012:0426",
          "tags": [
            "vendor-advisory",
            "x_refsource_SUSE"
          ],
          "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
        },
        {
          "name": "DSA-2403",
          "tags": [
            "vendor-advisory",
            "x_refsource_DEBIAN"
          ],
          "url": "http://www.debian.org/security/2012/dsa-2403"
        },
        {
          "name": "php-phpregistervariableex-code-exec(72911)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
        },
        {
          "name": "48668",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/48668"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
        },
        {
          "name": "47801",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47801"
        },
        {
          "name": "[oss-security] 20120202 PHP remote code execution introduced via HashDoS fix",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
        },
        {
          "name": "[oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix",
          "tags": [
            "mailing-list",
            "x_refsource_MLIST"
          ],
          "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
        },
        {
          "name": "SSRT100877",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
        },
        {
          "name": "1026631",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1026631"
        },
        {
          "name": "HPSBUX02791",
          "tags": [
            "vendor-advisory",
            "x_refsource_HP"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://support.apple.com/kb/HT5281"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "https://gist.github.com/1725489"
        },
        {
          "name": "APPLE-SA-2012-05-09-1",
          "tags": [
            "vendor-advisory",
            "x_refsource_APPLE"
          ],
          "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
        },
        {
          "name": "47813",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/47813"
        }
      ]
    }
  },
  "cveMetadata": {
    "assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
    "assignerShortName": "redhat",
    "cveId": "CVE-2012-0830",
    "datePublished": "2012-02-06T20:00:00.000Z",
    "dateReserved": "2012-01-19T00:00:00.000Z",
    "dateUpdated": "2024-08-06T18:38:14.779Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CERTA-2012-AVI-272

Vulnerability from certfr_avis - Published: 2012-05-10 - Updated: 2012-05-10

Trente-six vulnérabilités ont été corrigées dans OS X Lion. Il est possible d'exécuter du code arbitraire à distance, d'exécuter du code en local, d'obtenir des données sensibles et d'élever ses privilèges. De nombreuses applications et fonctions sont touchées, toutes sont décrites dans le bulletin Apple référencé dans la section « Documentation ».

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Versions antérieures à OS X Lion v10.7.4.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité Apple HT5281 du 09 mai 2012

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eVersions ant\u00e9rieures \u00e0 OS X Lion v10.7.4.\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-1167",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1167"
    },
    {
      "name": "CVE-2012-0675",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0675"
    },
    {
      "name": "CVE-2012-0649",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0649"
    },
    {
      "name": "CVE-2012-0661",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0661"
    },
    {
      "name": "CVE-2012-0658",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0658"
    },
    {
      "name": "CVE-2011-4815",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4815"
    },
    {
      "name": "CVE-2011-2692",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2692"
    },
    {
      "name": "CVE-2011-1944",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1944"
    },
    {
      "name": "CVE-2011-3328",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3328"
    },
    {
      "name": "CVE-2012-0659",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0659"
    },
    {
      "name": "CVE-2011-3212",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3212"
    },
    {
      "name": "CVE-2011-2834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2834"
    },
    {
      "name": "CVE-2011-2821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2821"
    },
    {
      "name": "CVE-2012-0657",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0657"
    },
    {
      "name": "CVE-2012-0652",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0652"
    },
    {
      "name": "CVE-2011-1778",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1778"
    },
    {
      "name": "CVE-2011-0241",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-0241"
    },
    {
      "name": "CVE-2012-0660",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0660"
    },
    {
      "name": "CVE-2011-1005",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1005"
    },
    {
      "name": "CVE-2012-0036",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0036"
    },
    {
      "name": "CVE-2012-0662",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0662"
    },
    {
      "name": "CVE-2012-0655",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0655"
    },
    {
      "name": "CVE-2012-0642",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0642"
    },
    {
      "name": "CVE-2011-4566",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4566"
    },
    {
      "name": "CVE-2011-1777",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1777"
    },
    {
      "name": "CVE-2011-4885",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
    },
    {
      "name": "CVE-2011-2895",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2895"
    },
    {
      "name": "CVE-2012-0651",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0651"
    },
    {
      "name": "CVE-2011-1004",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1004"
    },
    {
      "name": "CVE-2012-0830",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0830"
    },
    {
      "name": "CVE-2011-3919",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3919"
    },
    {
      "name": "CVE-2012-0656",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0656"
    },
    {
      "name": "CVE-2011-3389",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3389"
    },
    {
      "name": "CVE-2012-1182",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-1182"
    },
    {
      "name": "CVE-2012-0870",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0870"
    },
    {
      "name": "CVE-2012-0654",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0654"
    }
  ],
  "initial_release_date": "2012-05-10T00:00:00",
  "last_revision_date": "2012-05-10T00:00:00",
  "links": [],
  "reference": "CERTA-2012-AVI-272",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2012-05-10T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    },
    {
      "description": "\u00c9l\u00e9vation de privil\u00e8ges"
    }
  ],
  "summary": "Trente-six vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eOS\nX Lion\u003c/span\u003e. Il est possible d\u0027ex\u00e9cuter du code arbitraire \u00e0 distance,\nd\u0027ex\u00e9cuter du code en local, d\u0027obtenir des donn\u00e9es sensibles et d\u0027\u00e9lever\nses privil\u00e8ges. De nombreuses applications et fonctions sont touch\u00e9es,\ntoutes sont d\u00e9crites dans le bulletin \u003cspan class=\"textit\"\u003eApple\u003c/span\u003e\nr\u00e9f\u00e9renc\u00e9 dans la section \u00ab Documentation \u00bb.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans OS X Lion",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Apple HT5281 du 09 mai 2012",
      "url": "https://support.apple.com/kb/HT5281"
    }
  ]
}

CERTA-2012-AVI-358

Vulnerability from certfr_avis - Published: 2012-06-29 - Updated: 2012-06-29

Vingt-huit vulnérabilités ont été corrigées dans HP System Management Homepage. Ces vulnérabilités touchent les versions Linux et Windows du produit et peuvent mener à une exécution de code arbitraire à distance.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

Versions antérieures à HP System Management Homepage 7.1.1.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Bulletin de sécurité HP c03360041 du 26 juin 2012

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cP\u003eVersions ant\u00e9rieures \u00e0 HP System Management Homepage  7.1.1.\u003c/P\u003e",
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-4415",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4415"
    },
    {
      "name": "CVE-2012-0053",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0053"
    },
    {
      "name": "CVE-2011-4078",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4078"
    },
    {
      "name": "CVE-2012-0021",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0021"
    },
    {
      "name": "CVE-2011-4619",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4619"
    },
    {
      "name": "CVE-2012-2015",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2015"
    },
    {
      "name": "CVE-2012-2012",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2012"
    },
    {
      "name": "CVE-2011-4576",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4576"
    },
    {
      "name": "CVE-2012-0031",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0031"
    },
    {
      "name": "CVE-2012-2013",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2013"
    },
    {
      "name": "CVE-2012-1823",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-1823"
    },
    {
      "name": "CVE-2011-4577",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4577"
    },
    {
      "name": "CVE-2011-1944",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-1944"
    },
    {
      "name": "CVE-2011-2834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2834"
    },
    {
      "name": "CVE-2011-4108",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4108"
    },
    {
      "name": "CVE-2011-2821",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-2821"
    },
    {
      "name": "CVE-2012-1165",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-1165"
    },
    {
      "name": "CVE-2011-3607",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3607"
    },
    {
      "name": "CVE-2012-2016",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2016"
    },
    {
      "name": "CVE-2012-0036",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0036"
    },
    {
      "name": "CVE-2012-0057",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0057"
    },
    {
      "name": "CVE-2011-4317",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4317"
    },
    {
      "name": "CVE-2011-4153",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4153"
    },
    {
      "name": "CVE-2011-3379",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-3379"
    },
    {
      "name": "CVE-2011-4885",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
    },
    {
      "name": "CVE-2012-0830",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0830"
    },
    {
      "name": "CVE-2012-0027",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0027"
    },
    {
      "name": "CVE-2012-2014",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-2014"
    }
  ],
  "initial_release_date": "2012-06-29T00:00:00",
  "last_revision_date": "2012-06-29T00:00:00",
  "links": [],
  "reference": "CERTA-2012-AVI-358",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2012-06-29T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Atteinte \u00e0 l\u0027int\u00e9grit\u00e9 des donn\u00e9es"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    },
    {
      "description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
    }
  ],
  "summary": "Vingt-huit vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan class=\"textit\"\u003eHP\nSystem Management Homepage\u003c/span\u003e. Ces vuln\u00e9rabilit\u00e9s touchent les\nversions \u003cspan class=\"textit\"\u003eLinux\u003c/span\u003e et \u003cspan\nclass=\"textit\"\u003eWindows\u003c/span\u003e du produit et peuvent mener \u00e0 une\nex\u00e9cution de code arbitraire \u00e0 distance.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans HP System Management Homepage",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 HP c03360041 du 26 juin 2012",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
    }
  ]
}

CERTA-2012-AVI-055

Vulnerability from certfr_avis - Published: 2012-02-03 - Updated: 2012-02-03

Une vulnérabilité dans PHP permet à un attaquant d'exécuter du code arbitraire à distance.

Description

La correction imparfaite de la vulnérabilité CVE-2011-4885 dans PHP a introduit une nouvelle vulnérabilité. L'utilisation de mémoire non initialisée permet à un attaquant de provoquer un arrêt inopiné du serveur et d'exécuter du code arbitraire avec les droits du compte utilisé par l'interpréteur PHP.

Solution

La version 5.3.10 de PHP corrige ce problème.

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

PHP version 5.3.9.

Impacted products

	Vendor	Product	Description

References

Title

Publication Time

Tags

Annonce de la version 5.3.10 de PHP du 02 février 2012	None	vendor-advisory
Bulletin de sécurité Red Hat RHSA-2012:0093-1du 02 février 2012 :	-	other
Bulletin de sécurité Debian DSA-2403-1 du 02 février 2012 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [],
  "affected_systems_content": "\u003cp\u003ePHP version 5.3.9.\u003c/p\u003e",
  "content": "## Description\n\nLa correction imparfaite de la vuln\u00e9rabilit\u00e9 CVE-2011-4885 dans PHP a\nintroduit une nouvelle vuln\u00e9rabilit\u00e9. L\u0027utilisation de m\u00e9moire non\ninitialis\u00e9e permet \u00e0 un attaquant de provoquer un arr\u00eat inopin\u00e9 du\nserveur et d\u0027ex\u00e9cuter du code arbitraire avec les droits du compte\nutilis\u00e9 par l\u0027interpr\u00e9teur PHP.\n\n## Solution\n\nLa version 5.3.10 de PHP corrige ce probl\u00e8me.\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2011-4885",
      "url": "https://www.cve.org/CVERecord?id=CVE-2011-4885"
    },
    {
      "name": "CVE-2012-0830",
      "url": "https://www.cve.org/CVERecord?id=CVE-2012-0830"
    }
  ],
  "initial_release_date": "2012-02-03T00:00:00",
  "last_revision_date": "2012-02-03T00:00:00",
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Red Hat RHSA-2012:0093-1du 02 f\u00e9vrier    2012 :",
      "url": "https://rhn.redhat.com/errate/RHSA-2012:0093.html"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Debian DSA-2403-1 du 02 f\u00e9vrier 2012 :",
      "url": "http://www.debian.org/security/2012/dsa-2403"
    }
  ],
  "reference": "CERTA-2012-AVI-055",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2012-02-03T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Une vuln\u00e9rabilit\u00e9 dans PHP permet \u00e0 un attaquant d\u0027ex\u00e9cuter du code\narbitraire \u00e0 distance.\n",
  "title": "Vuln\u00e9rabilit\u00e9 dans PHP",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Annonce de la version 5.3.10 de PHP du 02 f\u00e9vrier 2012",
      "url": "http://www.php.net/archive/2012.php"
    }
  ]
}

FKIE_CVE-2012-0830

Vulnerability from fkie_nvd - Published: 2012-02-06 20:55 - Updated: 2025-04-11 00:51

Severity ?

Summary

References

URL	Tags
secalert@redhat.com	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
secalert@redhat.com	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html
secalert@redhat.com	http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html
secalert@redhat.com	http://marc.info/?l=bugtraq&m=134012830914727&w=2
secalert@redhat.com	http://openwall.com/lists/oss-security/2012/02/02/12
secalert@redhat.com	http://openwall.com/lists/oss-security/2012/02/03/1
secalert@redhat.com	http://rhn.redhat.com/errata/RHSA-2012-0092.html
secalert@redhat.com	http://secunia.com/advisories/47801
secalert@redhat.com	http://secunia.com/advisories/47806	Vendor Advisory
secalert@redhat.com	http://secunia.com/advisories/47813
secalert@redhat.com	http://secunia.com/advisories/48668
secalert@redhat.com	http://securitytracker.com/id?1026631
secalert@redhat.com	http://support.apple.com/kb/HT5281
secalert@redhat.com	http://svn.php.net/viewvc?view=revision&revision=323007
secalert@redhat.com	http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/	Exploit
secalert@redhat.com	http://www.debian.org/security/2012/dsa-2403
secalert@redhat.com	http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html
secalert@redhat.com	http://www.osvdb.org/78819
secalert@redhat.com	http://www.php.net/ChangeLog-5.php#5.3.10
secalert@redhat.com	http://www.securityfocus.com/bid/51830	Exploit
secalert@redhat.com	https://exchange.xforce.ibmcloud.com/vulnerabilities/72911
secalert@redhat.com	https://gist.github.com/1725489	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
af854a3a-2127-422b-91ae-364da2661108	http://lists.apple.com/archives/security-announce/2012/May/msg00001.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html
af854a3a-2127-422b-91ae-364da2661108	http://marc.info/?l=bugtraq&m=134012830914727&w=2
af854a3a-2127-422b-91ae-364da2661108	http://openwall.com/lists/oss-security/2012/02/02/12
af854a3a-2127-422b-91ae-364da2661108	http://openwall.com/lists/oss-security/2012/02/03/1
af854a3a-2127-422b-91ae-364da2661108	http://rhn.redhat.com/errata/RHSA-2012-0092.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/47801
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/47806	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/47813
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/48668
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1026631
af854a3a-2127-422b-91ae-364da2661108	http://support.apple.com/kb/HT5281
af854a3a-2127-422b-91ae-364da2661108	http://svn.php.net/viewvc?view=revision&revision=323007
af854a3a-2127-422b-91ae-364da2661108	http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/	Exploit
af854a3a-2127-422b-91ae-364da2661108	http://www.debian.org/security/2012/dsa-2403
af854a3a-2127-422b-91ae-364da2661108	http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/78819
af854a3a-2127-422b-91ae-364da2661108	http://www.php.net/ChangeLog-5.php#5.3.10
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/51830	Exploit
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/72911
af854a3a-2127-422b-91ae-364da2661108	https://gist.github.com/1725489	Exploit

Impacted products

	Vendor	Product	Version
	php	php	5.3.9

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:php:php:5.3.9:*:*:*:*:*:*:*",
              "matchCriteriaId": "EC3F1891-032D-409C-904C-A415D2323DFC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885."
    },
    {
      "lang": "es",
      "value": "La funci\u00f3n php_register_variable_ex en php_variables.c en PHP v5.3.9 permite a atacantes remotos ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de una solicitud que contenga un gran n\u00famero de variable. Se trata de un problema relacionado con el manejo inadecuado de las variables de tipo matriz (array). NOTA: Esta vulnerabilidad existe debido a una correcci\u00f3n incorrecta para el CVE-2011-4885."
    }
  ],
  "id": "CVE-2012-0830",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2012-02-06T20:55:03.080",
  "references": [
    {
      "source": "secalert@redhat.com",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/47801"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/47806"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/47813"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://secunia.com/advisories/48668"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://securitytracker.com/id?1026631"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://support.apple.com/kb/HT5281"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.debian.org/security/2012/dsa-2403"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.osvdb.org/78819"
    },
    {
      "source": "secalert@redhat.com",
      "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/51830"
    },
    {
      "source": "secalert@redhat.com",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
    },
    {
      "source": "secalert@redhat.com",
      "tags": [
        "Exploit"
      ],
      "url": "https://gist.github.com/1725489"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/47801"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/47806"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/47813"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/48668"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1026631"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://support.apple.com/kb/HT5281"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.debian.org/security/2012/dsa-2403"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/78819"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.securityfocus.com/bid/51830"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "https://gist.github.com/1725489"
    }
  ],
  "sourceIdentifier": "secalert@redhat.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-4PJR-P785-567F

Vulnerability from github – Published: 2022-05-14 03:52 – Updated: 2025-04-11 03:55

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2012-0830"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2012-02-06T20:55:00Z",
    "severity": "HIGH"
  },
  "details": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.",
  "id": "GHSA-4pjr-p785-567f",
  "modified": "2025-04-11T03:55:12Z",
  "published": "2022-05-14T03:52:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2012-0830"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2012:0092"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/errata/RHSA-2012:0093"
    },
    {
      "type": "WEB",
      "url": "https://access.redhat.com/security/cve/CVE-2012-0830"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.redhat.com/show_bug.cgi?id=786686"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
    },
    {
      "type": "WEB",
      "url": "https://gist.github.com/1725489"
    },
    {
      "type": "WEB",
      "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
    },
    {
      "type": "WEB",
      "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
    },
    {
      "type": "WEB",
      "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
    },
    {
      "type": "WEB",
      "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
    },
    {
      "type": "WEB",
      "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
    },
    {
      "type": "WEB",
      "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/47801"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/47806"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/47813"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/48668"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1026631"
    },
    {
      "type": "WEB",
      "url": "http://support.apple.com/kb/HT5281"
    },
    {
      "type": "WEB",
      "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
    },
    {
      "type": "WEB",
      "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos"
    },
    {
      "type": "WEB",
      "url": "http://www.debian.org/security/2012/dsa-2403"
    },
    {
      "type": "WEB",
      "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/78819"
    },
    {
      "type": "WEB",
      "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/51830"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2012-0830

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2012-0830

Aliases

CVE-2012-0830

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2012-0830",
    "description": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables.  NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.",
    "id": "GSD-2012-0830",
    "references": [
      "https://www.suse.com/security/cve/CVE-2012-0830.html",
      "https://www.debian.org/security/2012/dsa-2403",
      "https://access.redhat.com/errata/RHSA-2012:0093",
      "https://access.redhat.com/errata/RHSA-2012:0092",
      "https://alas.aws.amazon.com/cve/html/CVE-2012-0830.html",
      "https://linux.oracle.com/cve/CVE-2012-0830.html"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2012-0830"
      ],
      "details": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885.",
      "id": "GSD-2012-0830",
      "modified": "2023-12-13T01:20:13.851683Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "secalert@redhat.com",
        "ID": "CVE-2012-0830",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html",
            "refsource": "MISC",
            "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
          },
          {
            "name": "http://support.apple.com/kb/HT5281",
            "refsource": "MISC",
            "url": "http://support.apple.com/kb/HT5281"
          },
          {
            "name": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041",
            "refsource": "MISC",
            "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
          },
          {
            "name": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2",
            "refsource": "MISC",
            "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
          },
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
          },
          {
            "name": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html",
            "refsource": "MISC",
            "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
          },
          {
            "name": "http://openwall.com/lists/oss-security/2012/02/02/12",
            "refsource": "MISC",
            "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
          },
          {
            "name": "http://openwall.com/lists/oss-security/2012/02/03/1",
            "refsource": "MISC",
            "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
          },
          {
            "name": "http://rhn.redhat.com/errata/RHSA-2012-0092.html",
            "refsource": "MISC",
            "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
          },
          {
            "name": "http://secunia.com/advisories/47801",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/47801"
          },
          {
            "name": "http://secunia.com/advisories/47806",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/47806"
          },
          {
            "name": "http://secunia.com/advisories/47813",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/47813"
          },
          {
            "name": "http://secunia.com/advisories/48668",
            "refsource": "MISC",
            "url": "http://secunia.com/advisories/48668"
          },
          {
            "name": "http://securitytracker.com/id?1026631",
            "refsource": "MISC",
            "url": "http://securitytracker.com/id?1026631"
          },
          {
            "name": "http://svn.php.net/viewvc?view=revision\u0026revision=323007",
            "refsource": "MISC",
            "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
          },
          {
            "name": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/",
            "refsource": "MISC",
            "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
          },
          {
            "name": "http://www.debian.org/security/2012/dsa-2403",
            "refsource": "MISC",
            "url": "http://www.debian.org/security/2012/dsa-2403"
          },
          {
            "name": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html",
            "refsource": "MISC",
            "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
          },
          {
            "name": "http://www.osvdb.org/78819",
            "refsource": "MISC",
            "url": "http://www.osvdb.org/78819"
          },
          {
            "name": "http://www.php.net/ChangeLog-5.php#5.3.10",
            "refsource": "MISC",
            "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
          },
          {
            "name": "http://www.securityfocus.com/bid/51830",
            "refsource": "MISC",
            "url": "http://www.securityfocus.com/bid/51830"
          },
          {
            "name": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911",
            "refsource": "MISC",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
          },
          {
            "name": "https://gist.github.com/1725489",
            "refsource": "MISC",
            "url": "https://gist.github.com/1725489"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:php:php:5.3.9:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "secalert@redhat.com",
          "ID": "CVE-2012-0830"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The php_register_variable_ex function in php_variables.c in PHP 5.3.9 allows remote attackers to execute arbitrary code via a request containing a large number of variables, related to improper handling of array variables. NOTE: this vulnerability exists because of an incorrect fix for CVE-2011-4885."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1026631",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1026631"
            },
            {
              "name": "51830",
              "refsource": "BID",
              "tags": [
                "Exploit"
              ],
              "url": "http://www.securityfocus.com/bid/51830"
            },
            {
              "name": "[oss-security] 20120203 Re: PHP remote code execution introduced via HashDoS fix",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://openwall.com/lists/oss-security/2012/02/03/1"
            },
            {
              "name": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html",
              "refsource": "MISC",
              "tags": [],
              "url": "http://www.h-online.com/security/news/item/Critical-PHP-vulnerability-being-fixed-1427316.html"
            },
            {
              "name": "78819",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/78819"
            },
            {
              "name": "https://gist.github.com/1725489",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "https://gist.github.com/1725489"
            },
            {
              "name": "[oss-security] 20120202 PHP remote code execution introduced via HashDoS fix",
              "refsource": "MLIST",
              "tags": [],
              "url": "http://openwall.com/lists/oss-security/2012/02/02/12"
            },
            {
              "name": "47806",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/47806"
            },
            {
              "name": "http://svn.php.net/viewvc?view=revision\u0026revision=323007",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://svn.php.net/viewvc?view=revision\u0026revision=323007"
            },
            {
              "name": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/",
              "refsource": "MISC",
              "tags": [
                "Exploit"
              ],
              "url": "http://thexploit.com/sec/critical-php-remote-vulnerability-introduced-in-fix-for-php-hashtable-collision-dos/"
            },
            {
              "name": "http://www.php.net/ChangeLog-5.php#5.3.10",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www.php.net/ChangeLog-5.php#5.3.10"
            },
            {
              "name": "47813",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/47813"
            },
            {
              "name": "DSA-2403",
              "refsource": "DEBIAN",
              "tags": [],
              "url": "http://www.debian.org/security/2012/dsa-2403"
            },
            {
              "name": "RHSA-2012:0092",
              "refsource": "REDHAT",
              "tags": [],
              "url": "http://rhn.redhat.com/errata/RHSA-2012-0092.html"
            },
            {
              "name": "47801",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/47801"
            },
            {
              "name": "http://support.apple.com/kb/HT5281",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://support.apple.com/kb/HT5281"
            },
            {
              "name": "APPLE-SA-2012-05-09-1",
              "refsource": "APPLE",
              "tags": [],
              "url": "http://lists.apple.com/archives/security-announce/2012/May/msg00001.html"
            },
            {
              "name": "openSUSE-SU-2012:0426",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00016.html"
            },
            {
              "name": "48668",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/48668"
            },
            {
              "name": "HPSBMU02786",
              "refsource": "HP",
              "tags": [],
              "url": "http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041"
            },
            {
              "name": "SSRT100856",
              "refsource": "HP",
              "tags": [],
              "url": "http://marc.info/?l=bugtraq\u0026m=134012830914727\u0026w=2"
            },
            {
              "name": "php-phpregistervariableex-code-exec(72911)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/72911"
            },
            {
              "name": "SUSE-SU-2012:0411",
              "refsource": "SUSE",
              "tags": [],
              "url": "http://lists.opensuse.org/opensuse-security-announce/2012-03/msg00013.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "acInsufInfo": false,
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2023-02-13T03:26Z",
      "publishedDate": "2012-02-06T20:55Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2012-0830 (GCVE-0-2012-0830)

CERTA-2012-AVI-272

Solution

CERTA-2012-AVI-358

Solution

CERTA-2012-AVI-055

Description

Solution

FKIE_CVE-2012-0830

GHSA-4PJR-P785-567F

GSD-2012-0830

Tags

Sightings

Nomenclature