CVE-2012-2329 - OpenCVE

Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Php	Php

Configuration 1 [-]

OR	cpe:2.3:a:php:php:5.4.0:::::::*
	cpe:2.3:a:php:php:5.4.1:::::::*
	cpe:2.3:a:php:php:5.4.2:::::::*

References

Link	Resource
http://secunia.com/advisories/49014
http://www.php.net/ChangeLog-5.php#5.4.3
http://www.php.net/archive/2012.php#id2012-05-08-1
http://www.securityfocus.com/bid/53455
https://bugs.php.net/bug.php?id=61807
https://bugzilla.redhat.com/show_bug.cgi?id=820000	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/75545
https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: redhat

Published: 2012-05-11T10:00:00

Updated: 2017-08-28T12:57:01

Reserved: 2012-04-19T00:00:00

Link: CVE-2012-2329

JSON object: View

NVD Information

Status : Modified

Published: 2012-05-11T10:15:48.263

Modified: 2017-08-29T01:31:35.460

Link: CVE-2012-2329

JSON object: View

Redhat Information

No data.

CWE

CWE-119

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-05-08T00:00:00", "descriptions": [{"lang": "en", "value": "Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "shortName": "redhat"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "https://bugs.php.net/bug.php?id=61807"}, {"name": "php-apacherequestheaders-bo(75545)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75545"}, {"name": "49014", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/49014"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=820000"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"}, {"name": "53455", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/53455"}, {"name": "SSRT100992", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862"}, {"name": "HPSBMU02900", "tags": ["vendor-advisory", "x_refsource_HP"], "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www.php.net/ChangeLog-5.php#5.4.3"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "secalert@redhat.com", "ID": "CVE-2012-2329", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "https://bugs.php.net/bug.php?id=61807", "refsource": "CONFIRM", "url": "https://bugs.php.net/bug.php?id=61807"}, {"name": "php-apacherequestheaders-bo(75545)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75545"}, {"name": "49014", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/49014"}, {"name": "https://bugzilla.redhat.com/show_bug.cgi?id=820000", "refsource": "CONFIRM", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=820000"}, {"name": "http://www.php.net/archive/2012.php#id2012-05-08-1", "refsource": "CONFIRM", "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"}, {"name": "53455", "refsource": "BID", "url": "http://www.securityfocus.com/bid/53455"}, {"name": "SSRT100992", "refsource": "HP", "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862"}, {"name": "HPSBMU02900", "refsource": "HP", "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862"}, {"name": "http://www.php.net/ChangeLog-5.php#5.4.3", "refsource": "CONFIRM", "url": "http://www.php.net/ChangeLog-5.php#5.4.3"}]}}}}, "cveMetadata": {"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749", "assignerShortName": "redhat", "cveId": "CVE-2012-2329", "datePublished": "2012-05-11T10:00:00", "dateReserved": "2012-04-19T00:00:00", "dateUpdated": "2017-08-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:php:php:5.4.0:*:*:*:*:*:*:*", "matchCriteriaId": "E7B9B8D2-78B7-4B17-955B-741C7A6F6634", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.1:*:*:*:*:*:*:*", "matchCriteriaId": "5CA2A940-BD69-4D35-AF12-432CB929248B", "vulnerable": true}, {"criteria": "cpe:2.3:a:php:php:5.4.2:*:*:*:*:*:*:*", "matchCriteriaId": "29BD13F9-86C8-44C4-A860-9A87870A518E", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request."}, {"lang": "es", "value": "Desbordamiento de buffer en la funci\u00f3n apache_request_headers de sapi/cgi/cgi_main.c de PHP 5.4.x anteriores a la 5.4.3 permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de la aplicaci\u00f3n) a trav\u00e9s de una cadena extensa en la cabecera de una petici\u00f3n HTTP."}], "id": "CVE-2012-2329", "lastModified": "2017-08-29T01:31:35.460", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-05-11T10:15:48.263", "references": [{"source": "secalert@redhat.com", "url": "http://secunia.com/advisories/49014"}, {"source": "secalert@redhat.com", "url": "http://www.php.net/ChangeLog-5.php#5.4.3"}, {"source": "secalert@redhat.com", "url": "http://www.php.net/archive/2012.php#id2012-05-08-1"}, {"source": "secalert@redhat.com", "url": "http://www.securityfocus.com/bid/53455"}, {"source": "secalert@redhat.com", "url": "https://bugs.php.net/bug.php?id=61807"}, {"source": "secalert@redhat.com", "tags": ["Patch"], "url": "https://bugzilla.redhat.com/show_bug.cgi?id=820000"}, {"source": "secalert@redhat.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75545"}, {"source": "secalert@redhat.com", "url": "https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862"}], "sourceIdentifier": "secalert@redhat.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}