CVE-2004-0958
PHP 4.x/5.0.1 - PHP_Variables Remote Memory Disclosure
Severity Score
5.0
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
php_variables.c in PHP before 5.0.2 allows remote attackers to read sensitive memory contents via (1) GET, (2) POST, or (3) COOKIE GPC variables that end in an open bracket character, which causes PHP to calculate an incorrect string length.
PHP anteriores a 5.0.2 permiten a atacantes remotos leer contenidos de memoria sensibles mediante variables (1) GET, (2) POST, o (3) COOKIE GPC que acaban en un carácter de apertura de corchete.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2004-09-15 First Exploit
- 2004-10-13 CVE Reserved
- 2004-10-16 CVE Published
- 2023-09-23 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0053.html | Mailing List | |
| http://marc.info/?l=bugtraq&m=109527531130492&w=2 | Mailing List | |
| http://secunia.com/advisories/12560 | Third Party Advisory | |
| http://securitytracker.com/id?1011279 | Vdb Entry | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/17393 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10863 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/24656 | 2004-09-15 |
| URL | Date | SRC |
|---|---|---|
| http://www.redhat.com/support/errata/RHSA-2004-687.html | 2017-10-11 |
| URL | Date | SRC |
|---|---|---|
| https://bugzilla.fedora.us/show_bug.cgi?id=2344 | 2017-10-11 | |
| https://access.redhat.com/security/cve/CVE-2004-0958 | 2004-12-21 | |
| https://bugzilla.redhat.com/show_bug.cgi?id=1617331 | 2004-12-21 |