PHP4 IMAP module buffer overflow vulnerability

Description

This alert was generated using only banner information. It may be a false positive.

A vulnerability has been discovered in PHP 4.0.3. The problem occurs in the imap module when calling the imap_open() function. Exploitation of this issue may result in the target application crashing.

Affected PHP version 4.0.3.

Remediation

Upgrade PHP to the latest version.

References

BID 6557

PHP IMAP Module Buffer Overflow Vulnerability

Related Vulnerabilities

OpenSSL Double Free Vulnerability (CVE-2003-0545)

Jenkins Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2020-2229)

Joomla! Core 1.7.x Information Disclosure (1.7.0 - 1.7.3)

WordPress Plugin Universal Analytics Cross-Site Scripting (1.3.0)

Jenkins Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2014-2059)

Severity

Medium

Classification

CWE-119 CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N