CVE-2009-0754

PHP 5.2.5 - 'mbstring.func_overload' WebServer Denial of Service

Severity Score

2.1

*CVSS v2

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

PHP 4.4.4, 5.1.6, and other versions, when running on Apache, allows local users to modify behavior of other sites hosted on the same web server by modifying the mbstring.func_overload setting within .htaccess, which causes this setting to be applied to other virtual hosts on the same server.

PHP v4.4.4, v5.1.6, y otras versiones, cuando están ejecutando Apache, permite a usuarios locales modificar el comportamiento de otros sitios hospedados en el mismo servidor web mediante la modificación de la característica mbstring.func_overload dentro de .htaccess, lo que produce que esta característica sea aplicada a otros sistemas virtuales alojados en el mismo servidor.

*Credits: N/A

CVSS Scores

NISTv2 2.1

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

Partial

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2009-01-30 First Exploit
2009-03-03 CVE Reserved
2009-03-03 CVE Published
2023-03-08 EPSS Updated
2024-08-07 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date

CWE

CWE-134: Use of Externally-Controlled Format String

CAPEC

References (20)

URL	Tag	Source
http://secunia.com/advisories/34642	Third Party Advisory
http://secunia.com/advisories/34830	Third Party Advisory
http://secunia.com/advisories/35003	Third Party Advisory
http://secunia.com/advisories/35007	Third Party Advisory
http://secunia.com/advisories/35306	Third Party Advisory
http://www.openwall.com/lists/oss-security/2009/01/30/1	Mailing List
http://www.openwall.com/lists/oss-security/2009/02/03/3	Mailing List
http://www.openwall.com/lists/oss-security/2009/02/25/3	Mailing List
http://www.securitytracker.com/id?1021979	Vdb Entry
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11035	Signature

URL	Date	SRC
https://www.exploit-db.com/exploits/32769	2009-01-30
http://bugs.php.net/bug.php?id=27421	2024-08-07

URL	Date	SRC

URL	Date	SRC
http://lists.opensuse.org/opensuse-security-announce/2009-04/msg00003.html	2018-10-03
http://www.debian.org/security/2009/dsa-1789	2018-10-03
http://www.redhat.com/support/errata/RHSA-2009-0350.html	2018-10-03
https://usn.ubuntu.com/761-1	2018-10-03
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01451.html	2018-10-03
https://www.redhat.com/archives/fedora-package-announce/2009-May/msg01465.html	2018-10-03
https://access.redhat.com/security/cve/CVE-2009-0754	2009-04-14
https://bugzilla.redhat.com/show_bug.cgi?id=479272	2009-04-14

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Php Search vendor "Php"	Php Search vendor "Php" for product "Php"	4.4.4 Search vendor "Php" for product "Php" and version "4.4.4"	-	Affected	in	Apache Search vendor "Apache"	Apache Search vendor "Apache" for product "Apache"	*	-	Safe
Php Search vendor "Php"	Php Search vendor "Php" for product "Php"	5.1.6 Search vendor "Php" for product "Php" and version "5.1.6"	-	Affected	in	Apache Search vendor "Apache"	Apache Search vendor "Apache" for product "Apache"	*	-	Safe