header-logo
Suggest Exploit
vendor:
PHP
by:
7.5
CVSS
HIGH
Remote Denial-of-Service
400
CWE
Product Name: PHP
Affected Version From: PHP versions prior to 5.3.6
Affected Version To:
Patch Exists: YES
Related CWE:
CPE: a:php:php
Metasploit:
Other Scripts:
Platforms Tested:

Remote Denial-of-Service Vulnerability in PHP ‘Intl’ Extension

Successful attacks will cause the application to crash, creating a denial-of-service condition. Due to the nature of this issue, arbitrary code-execution may be possible; however, this has not been confirmed.

Mitigation:

Update to PHP version 5.3.6 or later.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/46968/info

PHP is prone to a remote denial-of-service vulnerability that affects the 'Intl' extension.

Successful attacks will cause the application to crash, creating a denial-of-service condition. Due to the nature of this issue, arbitrary code-execution may be possible; however, this has not been confirmed.

PHP versions prior to 5.3.6 are vulnerable.

numfmt_set_symbol(numfmt_create("en", NumberFormatter::PATTERN_DECIMAL), 2147483648, "")

Navigation

Suggest Exploit

Services By CQR