According to its banner, the version of PHP running on the remote web server is 7.0.x prior to 7.0.13. It is, therefore, affected by multiple vulnerabilities :

  - A stack consumption condition exists in the     gdImageFillToBorder function of the gd.c script within     the GD Graphics Library (libgd). An unauthenticated,     remote attacker can exploit this issue, via a crafted     call to imagefilltoborder using a negative color value,     to cause the application to stop responding.
    (CVE-2016-9933)

  - A denial of service (DoS) vulnerability exists in the     ext/wddx/wddx.c script. An unauthenticated, remote     attacker can exploit this issue, via crafted serialized     data in a wddxPacket XML document, to cause the     application to stop responding. (CVE-2016-9934)

  - A flaw exists in the parse_url() function due to     returning the incorrect host. An unauthenticated, remote     attacker can exploit this to have a multiple impacts     depending on how the function is implemented, which can     include bypassing authentication or conducting open     redirection and server-side request forgery attacks.

  - An integer overflow condition exists in the
    _php_imap_mail() function in file ext/imap/php_imap.c     when handling overly long strings. An unauthenticated,     remote attacker can exploit this to cause a     heap-based buffer overflow, resulting in a denial of     service condition or the execution of arbitrary code.

  - An integer overflow condition exists in the     gdImageAALine() function within file ext/gd/libgd/gd.c     due to improper validation of line limit values. An     unauthenticated, remote attacker can exploit this to     cause an out-of-bounds memory read or write, resulting     in a denial of service condition, the disclosure of     memory contents, or the execution of arbitrary code.

Note that this software is reportedly affected by other vulnerabilities as well that have not been fixed yet in version 7.0.13.

Detections

Analytics

PHP 7.0.x < 7.0.13 Multiple Vulnerabilities

high Nessus Plugin ID 94956

Version 1.16