Vulnerabilities > PHP > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2011-03-20 | CVE-2011-1468 | Resource Management Errors vulnerability in PHP Multiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to cause a denial of service (memory consumption) via (1) plaintext data to the openssl_encrypt function or (2) ciphertext data to the openssl_decrypt function. | 4.3 |
| 2011-03-20 | CVE-2011-1467 | Denial of Service vulnerability in PHP 'Intl' Extension 'NumberFormatter::setSymbol()' Function Unspecified vulnerability in the NumberFormatter::setSymbol (aka numfmt_set_symbol) function in the Intl extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via an invalid argument, a related issue to CVE-2010-4409. | 5.0 |
| 2011-03-20 | CVE-2011-1466 | Numeric Errors vulnerability in PHP Integer overflow in the SdnToJulian function in the Calendar extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (application crash) via a large integer in the first argument to the cal_from_jd function. | 5.0 |
| 2011-03-20 | CVE-2011-1464 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in PHP Buffer overflow in the strval function in PHP before 5.3.6, when the precision configuration option has a large value, might allow context-dependent attackers to cause a denial of service (application crash) via a small numerical value in the argument. | 4.3 |
| 2011-03-20 | CVE-2011-0708 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in PHP exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD) that triggers a buffer over-read. | 4.3 |
| 2011-03-20 | CVE-2011-0421 | Denial Of Service vulnerability in libzip '_zip_name_locate()' NULL Pointer Dereference The _zip_name_locate function in zip_name_locate.c in the Zip extension in PHP before 5.3.6 does not properly handle a ZIPARCHIVE::FL_UNCHANGED argument, which might allow context-dependent attackers to cause a denial of service (NULL pointer dereference) via an empty ZIP archive that is processed with a (1) locateName or (2) statName operation. network php | 4.3 |
| 2011-02-19 | CVE-2011-0420 | Denial Of Service vulnerability in PHP 5.3.5 The grapheme_extract function in the Internationalization extension (Intl) for ICU for PHP 5.3.5 allows context-dependent attackers to cause a denial of service (crash) via an invalid size argument, which triggers a NULL pointer dereference. | 5.0 |
| 2011-02-02 | CVE-2011-0755 | Numeric Errors vulnerability in PHP Integer overflow in the mt_rand function in PHP before 5.3.4 might make it easier for context-dependent attackers to predict the return values by leveraging a script's use of a large max parameter, as demonstrated by a value that exceeds mt_getrandmax. | 5.0 |
| 2011-02-02 | CVE-2011-0754 | Link Following vulnerability in PHP The SplFileInfo::getType function in the Standard PHP Library (SPL) extension in PHP before 5.3.4 on Windows does not properly detect symbolic links, which might make it easier for local users to conduct symlink attacks by leveraging cross-platform differences in the stat structure, related to lack of a FILE_ATTRIBUTE_REPARSE_POINT check. | 4.4 |
| 2011-02-02 | CVE-2011-0753 | Race Condition vulnerability in PHP Race condition in the PCNTL extension in PHP before 5.3.4, when a user-defined signal handler exists, might allow context-dependent attackers to cause a denial of service (memory corruption) via a large number of concurrent signals. | 4.3 |