CVE-2013-6712 in PHPinformación

Resumen (Inglés)

The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification.

Reservar

2013-11-08

Divulgación

2013-11-27

Voces

VulDB provides additional information and datapoints for this CVE:

ID	Vulnerabilidad	CWE	Exp	Con	CVE
11339	PHP OBJECT parse_iso_intervals.c DateInterval desbordamiento de búfer	119	No está definido	Arreglo oficial	CVE-2013-6712

Descripción

CPE

CWE

CVSS

Hazañas

Historia

Diferencia

Relacionar

Inteligencia de amenazas

API JSON

API XML

API CSV

◂ AnteriorVisión De ConjuntoPróximo ▸

Interested in the pricing of exploits?

See the underground prices here!