Oval Definition:oval:org.mitre.oval:def:10896
Revision Date:2013-04-29Version:11
Title:The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.
Description:The memory_limit functionality in PHP 4.x up to 4.3.7, and 5.x up to 5.0.0RC3, under certain conditions such as when register_globals is enabled, allows remote attackers to execute arbitrary code by triggering a memory_limit abort during execution of the zend_hash_init function and overwriting a HashTable destructor pointer before the initialization of key data structures is complete.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2004-0594
Platform(s):CentOS Linux 3
Red Hat Enterprise Linux 3
Product(s):
Definition Synopsis
  • RHEL3 or CentOS3
  • The operating system installed on the system is Red Hat Enterprise Linux 3
  • OR CentOS Linux 3.x
  • AND Configuration section
  • php is earlier than 0:4.3.2-11.1.ent
  • OR php-pgsql is earlier than 0:4.3.2-11.1.ent
  • OR php-mysql is earlier than 0:4.3.2-11.1.ent
  • OR php-ldap is earlier than 0:4.3.2-11.1.ent
  • OR php-imap is earlier than 0:4.3.2-11.1.ent
  • OR php-odbc is earlier than 0:4.3.2-11.1.ent
    • BACK