Published: 06/12/2010 Updated: 30/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P

Integer overflow in the NumberFormatter::getSymbol (aka numfmt_get_symbol) function in PHP 5.3.3 and previous versions allows context-dependent malicious users to cause a denial of service (application crash) via an invalid argument.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 4.0
php php 4.0.0
php php 4.2.0
php php 4.3.1
php php 4.3.7
php php 4.3.8
php php 4.4.5
php php 4.4.6
php php 3.0.12
php php 3.0.1
php php 3.0.17
php php 3.0.16
php php 2.0
php php 1.0
php php 5.3.0
php php 4.0.3
php php 4.0.4
php php 4.1.0
php php 4.2.2
php php 4.2.3
php php 4.3.2
php php 4.3.3
php php 4.3.4
php php 4.4.1
php php 4.4.2
php php 4.4.9
php php 3.0.11
php php 3.0.4
php php 3.0.3
php php 3.0.8
php php 3.0.5
php php 5.3.1
php php 5.3.2
php php 4.0.5
php php 4.0.6
php php 4.0.7
php php 4.1.1
php php 4.1.2
php php 4.3.0
php php 4.3.5
php php 4.3.6
php php 4.4.3
php php 4.4.4
php php 3.0.10
php php 3.0.13
php php 3.0.15
php php 3.0.14
php php 3.0.6
php php 2.0b10
php php 4.0.1
php php 4.0.2
php php 4.2.1
php php 4.3.10
php php 4.3.11
php php 4.3.9
php php 4.4.0
php php 4.4.7
php php 4.4.8
php php 3.0
php php 3.0.2
php php 3.0.18
php php 3.0.9
php php 3.0.7
php php

It was discovered that an integer overflow in the XML UTF-8 decoding code could allow an attacker to bypass cross-site scripting (XSS) protections This issue only affected Ubuntu 606 LTS, Ubuntu 804 LTS, and Ubuntu 910 (CVE-2009-5016) ...

From: Maksymilian Arciemowicz <cxib () securityreason com> Date: Fri, 10 Dec 2010 14:43:32 +0100 -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 [ PHP 533 NumberFormatter::getSymbol Integer Overflow ] Author: Maksymilian Arciemowicz securityreasoncom/ cxibnet/ Date: - - Dis: 11112010 - - Pub: 10122010 CERT: VU#479900 ...

PHP version 533 suffers from a NumberFormatter::getSymbol integer overflow vulnerability ...

CWE-189 http://svn.php.net/viewvc/php/php-src/trunk/ext/intl/formatter/formatter_attr.c?r1=305571&r2=305570&pathrev=305571 http://www.kb.cert.org/vuls/id/479900 http://svn.php.net/viewvc?view=revision&revision=305571 http://www.securityfocus.com/bid/45119 http://www.exploit-db.com/exploits/15722 http://www.mandriva.com/security/advisories?name=MDVSA-2010:255 http://www.vupen.com/english/advisories/2011/0020 http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052836.html http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052845.html http://www.ubuntu.com/usn/USN-1042-1 http://secunia.com/advisories/42812 http://www.vupen.com/english/advisories/2011/0077 http://www.php.net/ChangeLog-5.php http://www.vupen.com/english/advisories/2011/0021 http://www.mandriva.com/security/advisories?name=MDVSA-2010:254 http://support.apple.com/kb/HT4581 http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html http://lists.opensuse.org/opensuse-updates/2012-01/msg00035.html http://secunia.com/advisories/47674 http://www.securityfocus.com/archive/1/515142/100/0/threaded https://usn.ubuntu.com/1042-1/https://nvd.nist.gov https://www.exploit-db.com/exploits/15722/

CVE-2010-4409

Vulnerability Summary

Vendor Advisories

Exploits

References

Vulmon Search

About

Products

Connect