CVE-2010-4156
published 2010-11-10CVE-2010-4156: The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via…
PriorityP429medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
12.79%
95.8th percentile
The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via a large value of the third parameter (aka the length parameter).
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| scottmac | libmbfl | — | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vendor_ubuntu6.8MEDIUM
vendor_redhat5.0MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-9mqx-xjgw-xp5v: The mb_strcut function in Libmbfl 1
ghsa_unreviewed·2022-05-17
CVE-2010-4156 [MEDIUM] CWE-20 GHSA-9mqx-xjgw-xp5v: The mb_strcut function in Libmbfl 1
The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via a large value of the third parameter (aka the length parameter).
Ubuntu
PHP vulnerabilities
vendor_ubuntu·2011-01-11·CVSS 6.8
CVE-2010-4409 [MEDIUM] PHP vulnerabilities
Title: PHP vulnerabilities
It was discovered that an integer overflow in the XML UTF-8 decoding
code could allow an attacker to bypass cross-site scripting (XSS)
protections. This issue only affected Ubuntu 6.06 LTS, Ubuntu 8.04 LTS,
and Ubuntu 9.10. (CVE-2009-5016)
It was discovered that the XML UTF-8 decoding code did not properly
handle non-shortest form UTF-8 encoding and ill-formed subsequences
in UTF-8 data, which could allow an attacker to bypass cross-site
scripting (XSS) protections. (CVE-2010-3870)
It was discovered that attackers might be able to bypass open_basedir()
restrictions by passing a specially crafted filename. (CVE-2010-3436)
Maksymilian Arciemowicz discovered that a NULL pointer derefence in the
ZIP archive handling code could allow an attacker to cause a denial
Red Hat
php information disclosure via mb_strcut()
vendor_redhat·2010-11-08·CVSS 5.0
CVE-2010-4156 [MEDIUM] php information disclosure via mb_strcut()
php information disclosure via mb_strcut()
The mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via a large value of the third parameter (aka the length parameter).
Statement: This issue did not affect the version of php packages as shipped with Red Hat Enterprise Linux 4, 5 or 6. It did affect the PHP 5.3 (php53) package on Red Hat Enterprise Linux 5.
Package: php (Red Hat Enterprise Linux 4) - Not affected
Package: php (Red Hat Enterprise Linux 5) - Not affected
Package: php (Red Hat Enterprise Linux 6) - Not affected
No detection rules found.
Bugzilla
CVE-2010-4156 php information disclosure via mb_strcut()
bugzilla·2010-11-10·CVSS 5.0
CVE-2010-4156 [MEDIUM] CVE-2010-4156 php information disclosure via mb_strcut()
CVE-2010-4156 php information disclosure via mb_strcut()
An information disclosure flaw was found in the PHP mb_struct function.
mb_strcut() returns garbage when the following conditions are met:
1. The value specified to length parameter exceeds the length of the subject
string.
2. mbstring.internal_encoding is set to some single-byte encoding.
The garbage may consist of uncleared part of the heap that has previously been
used for some purpose, which could lead to unexpected information exposure.
This only affects PHP 5.3 and above.
This bug was originally reported to php upstream by Mateusz Kocielski.
Common Vulnerabilities and Exposures assigned an identifier CVE-2010-4156 to
the above vulnerability
Upstream bugs:
http://bugs.php.net/bug.php?id=53273
http://bugs.php.net/bug.php?id
Bugzilla
CVE-2009-5016 CVE-2010-3870 CVE-2010-3709 CVE-2010-4156 php various flaws [fedora-all]
bugzilla·2010-11-03·CVSS 6.8
CVE-2009-5016 [MEDIUM] CVE-2009-5016 CVE-2010-3870 CVE-2010-3709 CVE-2010-4156 php various flaws [fedora-all]
CVE-2009-5016 CVE-2010-3870 CVE-2010-3709 CVE-2010-4156 php various flaws [fedora-all]
This is an automatically created tracking bug! It was created to ensure
that one or more security vulnerabilities are fixed in affected Fedora
versions.
For comments that are specific to the vulnerability please use bugs filed
against "Security Response" product referenced in the "Blocks" field.
For more information see:
http://fedoraproject.org/wiki/Security/TrackingBugs
When creating a Bodhi update request, please include the bug IDs of the
respective parent bugs filed against the "Security Response" product.
Please mention CVE ids in the RPM changelog when available.
Bodhi update submission link:
https://admin.fedoraproject.org/updates/new/?type_=security&bugs=649056
Please note: this issue affe
http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052836.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-January/052845.htmlhttp://marc.info/?l=bugtraq&m=130331363227777&w=2http://pastie.org/1279428http://pastie.org/1279682http://secunia.com/advisories/42135http://secunia.com/advisories/42812http://secunia.com/advisories/43189http://www.mandriva.com/security/advisories?name=MDVSA-2010:225http://www.openwall.com/lists/oss-security/2010/11/07/2http://www.openwall.com/lists/oss-security/2010/11/08/13http://www.php.net/ChangeLog-5.phphttp://www.redhat.com/support/errata/RHSA-2011-0196.htmlhttp://www.securityfocus.com/bid/44727http://www.ubuntu.com/usn/USN-1042-1http://www.vupen.com/english/advisories/2011/0020http://www.vupen.com/english/advisories/2011/0021http://www.vupen.com/english/advisories/2011/0077http://lists.fedoraproject.org/pipermail/package-announce/2011-January/052836.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2011-January/052845.htmlhttp://marc.info/?l=bugtraq&m=130331363227777&w=2http://pastie.org/1279428http://pastie.org/1279682http://secunia.com/advisories/42135http://secunia.com/advisories/42812http://secunia.com/advisories/43189http://www.mandriva.com/security/advisories?name=MDVSA-2010:225http://www.openwall.com/lists/oss-security/2010/11/07/2http://www.openwall.com/lists/oss-security/2010/11/08/13http://www.php.net/ChangeLog-5.phphttp://www.redhat.com/support/errata/RHSA-2011-0196.htmlhttp://www.securityfocus.com/bid/44727http://www.ubuntu.com/usn/USN-1042-1http://www.vupen.com/english/advisories/2011/0020http://www.vupen.com/english/advisories/2011/0021http://www.vupen.com/english/advisories/2011/0077
2010-11-10
Published