FreeBSD : php-imap -- Denial of Service (1a0704e7-0edf-11e0-becc-0022156e8794)
Medium Nessus Plugin ID 51503
SynopsisThe remote FreeBSD host is missing one or more security-related updates.
DescriptionThe following DoS condition in IMAP extension was fixed in PHP 5.3.4 and PHP 5.2.15 :
A remote user can send specially crafted IMAP user name or password data to trigger a double free memory error in 'ext/imap/php_imap.c' and cause the target service to crash.
It may be possible to execute arbitrary code. However, code execution was not confirmed.
SolutionUpdate the affected packages.