CVE-2014-4049 in Apple Mac OS Xinfo

Summary

Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.

Reservation

06/12/2014

Disclosure

06/18/2014

Entries

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerability	CWE	Exp	Cou	CVE
67633	Apple Mac OS X apache_mod_php dns.c dns_get_record memory corruption	119	Not defined	Official fix	CVE-2014-4049
13586	PHP DNS TXT Record dns.c dns_get_record memory corruption	119	Unproven	Official fix	CVE-2014-4049

Description

CPE

CWE

CVSS

Exploits

History

Diff

Relate

Threat Intelligence

API JSON

API XML

API CSV

◂ PreviousOverviewNext ▸

Do you need the next level of professionalism?

Upgrade your account now!