Oval Definition:	oval:org.mitre.oval:def:11575
Revision Date: 2013-04-29 Version: 11 Title: Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter. Description: Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2007-1286 Platform(s): CentOS Linux 3 CentOS Linux 4 Oracle Linux 4 Red Hat Enterprise Linux 3 Red Hat Enterprise Linux 4 Product(s): Definition Synopsis OS Section: RHEL3, CentOS3 RHEL3 or CentOS3 The operating system installed on the system is Red Hat Enterprise Linux 3 OR CentOS Linux 3.x AND Configuration section php is earlier than 0:4.3.2-40.ent OR php-pgsql is earlier than 0:4.3.2-40.ent OR php-mysql is earlier than 0:4.3.2-40.ent OR php-ldap is earlier than 0:4.3.2-40.ent OR php-imap is earlier than 0:4.3.2-40.ent OR php-odbc is earlier than 0:4.3.2-40.ent OR php-devel is earlier than 0:4.3.2-40.ent OR OS Section: RHEL4, CentOS4, Oracle Linux 4 RHEL4, CentOS4 or Oracle Linux 4 The operating system installed on the system is Red Hat Enterprise Linux 4 OR CentOS Linux 4.x OR Oracle Linux 4.x AND Configuration section php-xmlrpc is earlier than 0:4.3.9-3.22.4 OR php-snmp is earlier than 0:4.3.9-3.22.4 OR php-domxml is earlier than 0:4.3.9-3.22.4 OR php-mysql is earlier than 0:4.3.9-3.22.4 OR php-imap is earlier than 0:4.3.9-3.22.4 OR php-gd is earlier than 0:4.3.9-3.22.4 OR php is earlier than 0:4.3.9-3.22.4 OR php-mbstring is earlier than 0:4.3.9-3.22.4 OR php-pgsql is earlier than 0:4.3.9-3.22.4 OR php-pear is earlier than 0:4.3.9-3.22.4 OR php-ldap is earlier than 0:4.3.9-3.22.4 OR php-odbc is earlier than 0:4.3.9-3.22.4 OR php-ncurses is earlier than 0:4.3.9-3.22.4 OR php-devel is earlier than 0:4.3.9-3.22.4
BACK