PHP 5.4.x < 5.4.5 _php_stream_scandir Overflow
Critical Nessus Plugin ID 60086
SynopsisThe remote web server uses a version of PHP that is affected by an overflow vulnerability.
DescriptionAccording to its banner, the version of PHP installed on the remote host is 5.4.x earlier than 5.4.5, and is, therefore, potentially affected by an unspecified overflow vulnerability in the function '_php_stream_scandir' in the file 'main/streams/streams.c'.
SolutionUpgrade to PHP version 5.4.5 or later.