Vulnerability & Exploit Database

Back to search

FreeBSD: php5 -- Denial of Service in php_date_parse_tzfile() (CVE-2012-0789)

Severity CVSS Published Added Modified
5 (AV:N/AC:L/Au:N/C:N/I:N/A:P) February 14, 2012 May 08, 2014 February 13, 2015

Description

Memory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a denial of service (memory consumption) by triggering many strtotime function calls, which are not properly handled by the php_date_parse_tzfile cache.

Scan For This Vulnerability

Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities

 Free InsightVM Trial

References

Solution

freebsd-upgrade-package-php5

Related Vulnerabilities