Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2013-6420Improper Restriction of Operations within the Bounds of a Memory Buffer in Apple MAC OS X

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-130Improper Handling of Length Parameter Inconsistency7 documents6 sources
Severity
7.5HIGHNVD
EPSS
40.2%
top 2.64%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
3
Apple MAC OS XPHPOpensuse
Timeline
PublishedDec 17
Latest updateMay 14

Description

The asn1_time_to_time_t function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse (1) notBefore and (2) notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted certificate that is not properly handled by the openssl_x509_parse function.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

NVDphp/php5.3.27+57
NVDapple/mac_os_x10.9.1
NVDopensuse/opensuse4 versions+3

Patches

Patch: bugzilla.redhat.comPatch: bugzilla.redhat.com

🔴Vulnerability Details

1
GHSA
GHSA-m6pq-hhvx-694c: The asn1_time_to_time_t function in ext/openssl/openssl2022-05-14

💥Exploits & PoCs

1
Exploit-DB
PHP - 'openssl_x509_parse()' Memory Corruption2013-12-17

📋Vendor Advisories

2
Ubuntu
PHP vulnerabilities2013-12-12
Red Hat
php: memory corruption in openssl_x509_parse()2013-12-10

💬Community

2
Bugzilla
CVE-2013-6420 php: memory corruption in openssl_x509_parse() [fedora-all]2013-12-11
Bugzilla
CVE-2013-6420 php: memory corruption in openssl_x509_parse()2013-12-02
CVE-2013-6420 — Apple MAC OS X vulnerability | cvebase