Oval Definition:oval:org.mitre.oval:def:29121
Revision Date:2015-08-03Version:18
Title:HP-UX Apache Server Suite running Apache Tomcat or PHP, Remote Denial of Service (DoS) and Other Vulnerabilities
Description:Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate numerical keys within the serialized properties of an object. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-8142.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2015-0231
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • HP-UX B.11.31
  • AND filesets test
  • hpuxws22APCH32.APACHE version is less than B.2.2.29.01
  • OR hpuxws22APCH32.APACHE2 version is less than B.2.2.29.01
  • OR hpuxws22APCH32.AUTH_LDAP version is less than B.2.2.29.01
  • OR hpuxws22APCH32.AUTH_LDAP2 version is less than B.2.2.29.01
  • OR hpuxws22APCH32.MOD_JK version is less than B.2.2.29.01
  • OR hpuxws22APCH32.MOD_JK2 version is less than B.2.2.29.01
  • OR hpuxws22APCH32.MOD_PERL version is less than B.2.2.29.01
  • OR hpuxws22APCH32.MOD_PERL2 version is less than B.2.2.29.01
  • OR hpuxws22APCH32.PHP version is less than B.2.2.29.01
  • OR hpuxws22APCH32.PHP2 version is less than B.2.2.29.01
  • OR hpuxws22APCH32.WEBPROXY version is less than B.2.2.29.01
  • OR hpuxws22APCH32.WEBPROXY2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.APACHE version is less than B.2.2.29.01
  • OR hpuxws22APACHE.APACHE2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.AUTH_LDAP version is less than B.2.2.29.01
  • OR hpuxws22APACHE.AUTH_LDAP2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.MOD_JK version is less than B.2.2.29.01
  • OR hpuxws22APACHE.MOD_JK2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.MOD_PERL version is less than B.2.2.29.01
  • OR hpuxws22APACHE.MOD_PERL2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.PHP version is less than B.2.2.29.01
  • OR hpuxws22APACHE.PHP2 version is less than B.2.2.29.01
  • OR hpuxws22APACHE.WEBPROXY version is less than B.2.2.29.01
  • OR hpuxws22APACHE.WEBPROXY2 version is less than B.2.2.29.01
  • OR hpuxws22TOMCAT.TOMCAT version is less than C.6.0.43.01
    • BACK