FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2010-4150

This CVE name corresponds to:

Entered Topic
2011-01-13 php-imap -- Denial of Service

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

CVE-2010-4150 at cve.mitre.org

Details

Type Candidate
Name CVE-2010-4150
Phase Assigned(20101103)

Description

Double free vulnerability in the imap_do_open function in the IMAP extension (ext/imap/php_imap.c) in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via unspecified vectors.

References

Source Reference
CONFIRM http://svn.php.net/viewvc?view=revision&revision=305032
CONFIRM https://bugzilla.redhat.com/show_bug.cgi?id=656917
CONFIRM http://www.php.net/ChangeLog-5.php
CONFIRM http://www.php.net/archive/2010.php#id2010-12-10-1
CONFIRM http://www.php.net/releases/5_2_15.php
CONFIRM http://www.php.net/releases/5_3_4.php
CONFIRM http://support.apple.com/kb/HT4581
APPLE APPLE-SA-2011-03-21-1
FEDORA FEDORA-2010-18976
FEDORA FEDORA-2010-19011
MANDRIVA MDVSA-2010:239
SLACKWARE SSA:2010-357-01
BID 44980
OVAL oval:org.mitre.oval:def:12489
SECTRACK 1024761
SECUNIA 42729
VUPEN ADV-2010-3027
VUPEN ADV-2010-3313
VUPEN ADV-2011-0020
VUPEN ADV-2011-0021
XF php-phpimapc-dos(63390)

Copyright © 2005 The MITRE Corporation.

Copyright © 2003-2005 Jacques Vidrine and contributors.
Please see the source of this document for full copyright information.