CVE-2014-3597
published 2014-08-23CVE-2014-3597: Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a…
PriorityP341medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EPSS
15.43%
96.4th percentile
Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049.
Affected
50 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| apple | os_x_yosemite_v10.10.3_and_security_update_2015-004 | — | — |
| php | php | <= 5.4.31 | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
| php | php | — | — |
CVSS provenance
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
osv6.8MEDIUM
vendor_redhat6.8MEDIUM
vendor_ubuntu4.3MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-hh9h-fmf6-wj4h: Multiple buffer overflows in the php_parserr function in ext/standard/dns
ghsa_unreviewed·2022-05-17·CVSS 5.1
CVE-2014-3597 [MEDIUM] CWE-119 GHSA-hh9h-fmf6-wj4h: Multiple buffer overflows in the php_parserr function in ext/standard/dns
Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049.
OSV
php5 vulnerabilities
osv·2014-09-10·CVSS 4.3
CVE-2014-3587 [MEDIUM] php5 vulnerabilities
php5 vulnerabilities
It was discovered that the Fileinfo component in php5 contains an integer
overflow. An attacker could use this flaw to cause a denial of service
or possibly execute arbitrary code via a crafted CDF file. (CVE-2014-3587)
It was discovered that the php_parserr function contains multiple buffer
overflows. An attacker could use this flaw to cause a denial of service
or possibly execute arbitrary code via crafted DNS records. (CVE-2014-3597)
OSV
CVE-2014-3597: Multiple buffer overflows in the php_parserr function in ext/standard/dns
osv·2014-08-22·CVSS 6.8
CVE-2014-3597 [MEDIUM] CVE-2014-3597: Multiple buffer overflows in the php_parserr function in ext/standard/dns
Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049.
Ubuntu
PHP vulnerabilities
vendor_ubuntu·2014-09-10·CVSS 4.3
CVE-2014-3587 [MEDIUM] PHP vulnerabilities
Title: PHP vulnerabilities
Summary: php5 could be made to crash or run programs if it received
specially crafted network traffic.
It was discovered that the Fileinfo component in php5 contains an integer
overflow. An attacker could use this flaw to cause a denial of service
or possibly execute arbitrary code via a crafted CDF file. (CVE-2014-3587)
It was discovered that the php_parserr function contains multiple buffer
overflows. An attacker could use this flaw to cause a denial of service
or possibly execute arbitrary code via crafted DNS records. (CVE-2014-3597)
Instructions: After a standard system update you need to restart Apache or
php5-fpm to make all the necessary changes.
Red Hat
php: multiple buffer over-reads in php_parserr
vendor_redhat·2014-07-30·CVSS 6.8
CVE-2014-3597 [MEDIUM] CWE-125 php: multiple buffer over-reads in php_parserr
php: multiple buffer over-reads in php_parserr
Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049.
Multiple buffer over-read flaws were found in the php_parserr() function of PHP. A malicious DNS server or a man-in-the-middle attacker could possibly use this flaw to crash a PHP application that used the dns_get_record() function to perform a DNS query.
Statement: This issue did not affect the versions of php as shipped with Red Hat Enterprise Linux 5
Apple
CVE-2014-3597: OS X Yosemite v10.10.3 and Security Update 2015-004
vendor_apple·CVSS 6.8
CVE-2014-3597 [MEDIUM] CVE-2014-3597: OS X Yosemite v10.10.3 and Security Update 2015-004
Apple Security Update: About the security content of OS X Yosemite v10.10.3 and Security Update 2015-004
Product: OS X Yosemite v10.10.3 and Security Update 2015-004
CVE: CVE-2014-3597
Component: CVE-2014-3597
No detection rules found.
No public exploits indexed.
http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00024.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00055.htmlhttp://php.net/ChangeLog-5.phphttp://rhn.redhat.com/errata/RHSA-2014-1326.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1327.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1765.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1766.htmlhttp://secunia.com/advisories/60609http://secunia.com/advisories/60696http://www.debian.org/security/2014/dsa-3008http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.htmlhttp://www.securityfocus.com/bid/69322http://www.ubuntu.com/usn/USN-2344-1https://bugs.php.net/bug.php?id=67717https://github.com/php/php-src/commit/2fefae47716d501aec41c1102f3fd4531f070b05https://security-tracker.debian.org/tracker/CVE-2014-3597https://support.apple.com/HT204659http://lists.apple.com/archives/security-announce/2015/Apr/msg00001.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00024.htmlhttp://lists.opensuse.org/opensuse-updates/2014-09/msg00055.htmlhttp://php.net/ChangeLog-5.phphttp://rhn.redhat.com/errata/RHSA-2014-1326.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1327.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1765.htmlhttp://rhn.redhat.com/errata/RHSA-2014-1766.htmlhttp://secunia.com/advisories/60609http://secunia.com/advisories/60696http://www.debian.org/security/2014/dsa-3008http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.htmlhttp://www.securityfocus.com/bid/69322http://www.ubuntu.com/usn/USN-2344-1https://bugs.php.net/bug.php?id=67717https://github.com/php/php-src/commit/2fefae47716d501aec41c1102f3fd4531f070b05https://security-tracker.debian.org/tracker/CVE-2014-3597https://support.apple.com/HT204659
2014-08-23
Published