CVE-2011-1148

HIGH

Description

Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by using the same variable for multiple arguments.

ID	Name	Product	Family	Severity
78268	Amazon Linux AMI : php (ALAS-2011-7)	Nessus	Amazon Linux Local Security Checks	high
75790	openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0645-1)	Nessus	SuSE Local Security Checks	high
75432	openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2011:0645-1)	Nessus	SuSE Local Security Checks	high
69566	Amazon Linux AMI : php (ALAS-2011-07)	Nessus	Amazon Linux Local Security Checks	high
68432	Oracle Linux 5 : php (ELSA-2012-0033)	Nessus	Oracle Linux Local Security Checks	high
68382	Oracle Linux 5 / 6 : php / php53 (ELSA-2011-1423)	Nessus	Oracle Linux Local Security Checks	high
61220	Scientific Linux Security Update : php on SL5.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
61168	Scientific Linux Security Update : php53 and php on SL5.x, SL6.x i386/x86_64	Nessus	Scientific Linux Local Security Checks	high
58811	HP System Management Homepage < 7.0 Multiple Vulnerabilities	Nessus	Web Servers	critical
57925	Debian DSA-2408-1 : php5 - several vulnerabilities	Nessus	Debian Local Security Checks	high
6303	Mac OS X 10.7 < 10.7.3 Multiple Vulnerabilities	Nessus Network Monitor	Generic	critical
57798	Mac OS X Multiple Vulnerabilities (Security Update 2012-001) (BEAST)	Nessus	MacOS X Local Security Checks	critical
57797	Mac OS X 10.7.x < 10.7.3 Multiple Vulnerabilities (BEAST)	Nessus	MacOS X Local Security Checks	critical
57642	CentOS 5 : php (CESA-2012:0033)	Nessus	CentOS Local Security Checks	high
57594	RHEL 5 : php (RHSA-2012:0033)	Nessus	Red Hat Local Security Checks	high
57158	SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7553)	Nessus	SuSE Local Security Checks	high
56707	Mandriva Linux Security Advisory : php (MDVSA-2011:165)	Nessus	Mandriva Local Security Checks	critical
56699	RHEL 5 / 6 : php53 and php (RHSA-2011:1423)	Nessus	Red Hat Local Security Checks	high
56695	CentOS 5 : php53 (CESA-2011:1423)	Nessus	CentOS Local Security Checks	high
56459	GLSA-201110-06 : PHP: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	critical
56219	Fedora 14 : maniadrive-1.2-32.fc14 / php-5.3.8-1.fc14 / php-eaccelerator-0.9.6.1-9.fc14 (2011-11537)	Nessus	Fedora Local Security Checks	high
56218	Fedora 15 : maniadrive-1.2-32.fc15 / php-5.3.8-1.fc15 / php-eaccelerator-0.9.6.1-9.fc15 (2011-11528)	Nessus	Fedora Local Security Checks	high
56150	Fedora 16 : maniadrive-1.2-32.fc16 / php-5.3.8-1.fc16 / php-eaccelerator-0.9.6.1-9.fc16 (2011-11464)	Nessus	Fedora Local Security Checks	high
55980	Slackware 11.0 / 12.0 / 12.1 / 12.2 / 13.0 / 13.1 / 13.37 / current : php (SSA:2011-237-01)	Nessus	Slackware Local Security Checks	high
801087	PHP 5.3 < 5.3.7 Multiple Vulnerabilities	Log Correlation Engine	Web Servers	high
6015	PHP 5.3.x < 5.3.7 Multiple Vulnerabilities	Nessus Network Monitor	Web Servers	high
55925	PHP 5.3 < 5.3.7 Multiple Vulnerabilities	Nessus	CGI abuses	critical
55912	FreeBSD : php -- multiple vulnerabilities (057bf770-cac4-11e0-aea3-00215c6a37bb)	Nessus	FreeBSD Local Security Checks	high
55166	SuSE 10 Security Update : PHP5 (ZYPP Patch Number 7554)	Nessus	SuSE Local Security Checks	high
55165	SuSE 11.1 Security Update : PHP5 (SAT Patch Number 4663)	Nessus	SuSE Local Security Checks	high
55087	Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 / 11.04 : php5 regressions (USN-1126-2)	Nessus	Ubuntu Local Security Checks	high
55086	Ubuntu 6.06 LTS / 8.04 LTS / 9.10 / 10.04 LTS / 10.10 / 11.04 : php5 vulnerabilities (USN-1126-1)	Nessus	Ubuntu Local Security Checks	high

CVE-2011-1148

Description

References

Details

Risk Information

CVSS v2.0