CVE-2014-9767 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	4.3 MEDIUM	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 52%

Vendor	Product	Version
php	php	𝑥 ≤ 5.4.45
php	php	5.5.0
php	php	5.5.1
php	php	5.5.2
php	php	5.5.3
php	php	5.5.4
php	php	5.5.5
php	php	5.5.6
php	php	5.5.7
php	php	5.5.8
php	php	5.5.9
php	php	5.5.10
php	php	5.5.11
php	php	5.5.12
php	php	5.5.13
php	php	5.5.14
php	php	5.5.18
php	php	5.5.19
php	php	5.5.20
php	php	5.5.21
php	php	5.5.22
php	php	5.5.23
php	php	5.5.24
php	php	5.5.25
php	php	5.5.26
php	php	5.5.27
php	php	5.5.28
php	php	5.6.0
php	php	5.6.1
php	php	5.6.2
php	php	5.6.3
php	php	5.6.4
php	php	5.6.5
php	php	5.6.6
php	php	5.6.7
php	php	5.6.8
php	php	5.6.9
php	php	5.6.10
php	php	5.6.11
php	php	5.6.12
hiphop_virtual_machine_for_php_project	hiphop_virtual_machine_for_php	𝑥 ≤ 3.12

𝑥

= Vulnerable software versions

Ubuntu Releases

Ubuntu Product

Codename

hhvm

noble	dne
mantic	dne
jammy	dne
impish	dne
hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	dne
cosmic	dne
bionic	not-affected
artful	not-affected
zesty	not-affected
yakkety	dne
xenial	needed
wily	dne
trusty	dne
precise	dne

php5

noble	dne
mantic	dne
jammy	dne
impish	dne
hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	dne
yakkety	dne
xenial	dne
wily	Fixed 5.6.11+dfsg-1ubuntu3.2 released
trusty	Fixed 5.5.9+dfsg-1ubuntu4.16 released
precise	Fixed 5.3.10-1ubuntu3.22 released

php7.0

noble	dne
mantic	dne
jammy	dne
impish	dne
hirsute	dne
groovy	dne
focal	dne
eoan	dne
disco	dne
cosmic	dne
bionic	dne
artful	dne
zesty	not-affected
yakkety	not-affected
xenial	not-affected
wily	dne
trusty	dne
precise	dne

Known Exploits!

Common Weakness Enumeration

CWE-22 - Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
The software uses external input to construct a pathname that is intended to identify a file or directory that is located underneath a restricted parent directory, but the software does not properly neutralize special elements within the pathname that can cause the pathname to resolve to a location that is outside of the restricted directory.

References

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00056.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00057.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00058.html

http://php.net/ChangeLog-5.php

http://rhn.redhat.com/errata/RHSA-2016-2750.html

http://www.openwall.com/lists/oss-security/2016/03/16/20

http://www.securityfocus.com/bid/76652

http://www.securitytracker.com/id/1035311

http://www.ubuntu.com/usn/USN-2952-1

http://www.ubuntu.com/usn/USN-2952-2

https://bugs.php.net/bug.php?id=67996

https://bugs.php.net/bug.php?id=70350

https://github.com/facebook/hhvm/commit/65c95a01541dd2fbc9c978ac53bed235b5376686

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00056.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00057.html

http://lists.opensuse.org/opensuse-security-announce/2016-04/msg00058.html

http://php.net/ChangeLog-5.php

http://rhn.redhat.com/errata/RHSA-2016-2750.html

http://www.openwall.com/lists/oss-security/2016/03/16/20

http://www.securityfocus.com/bid/76652

http://www.securitytracker.com/id/1035311

http://www.ubuntu.com/usn/USN-2952-1

http://www.ubuntu.com/usn/USN-2952-2

https://bugs.php.net/bug.php?id=67996

https://bugs.php.net/bug.php?id=70350

https://github.com/facebook/hhvm/commit/65c95a01541dd2fbc9c978ac53bed235b5376686