| Vigil@nce team describes computer vulnerabilities impacting your systems, and offers solutions to correct them. |
|
 |
|
|
|
vulnerability note CVE-2010-0397
PHP: denial of service of xmlrpc
Synthesis of the vulnerability
| The xmlrpc_decode_request() function of PHP does not validate XML data, which forces a NULL pointer dereference. |
Severity: 1/4.
Creation date: 15/03/2010.
|
Description of the vulnerability
The xmlrpc extension of PHP is used to manage remote procedure calls, expressed as XML. For example:
<methodCall>
<methodName>function</methodName>
<params>...</params>
</methodCall>
The xmlrpc_decode_request() function decodes XML data. However, if the "methodName" block is missing, a NULL pointer is dereferenced in xmlrpc_decode_request().
An attacker is generally not allowed to send xmlrpc data (otherwise, he can execute any public method). However, if an attacker is allowed to send them, he can send malformed data, in order to stop applications using xmlrpc_decode_request(). |
Complete Vigil@nce bulletin
Characteristics
Title: PHP: denial of service of xmlrpc.
Keywords: NULL PHP XML denial methodCall methodName service xmlrpc xmlrpc_decode_request.
Identifiers: 573573, BID-38708, CVE-2010-0397, DSA-2018-1, MDVSA-2010:068, MDVSA-2010:139, MDVSA-2010:140, SUSE-SR:2010:012, SUSE-SR:2010:013, VIGILANCE-VUL-9514.
|
Information sources
Solutions for this vulnerability
Supplements
Computer vulnerabilities tracking service
The Vigil@nce computer vulnerability tracking service alerts your teams of vulnerabilities or threats impacting your information system.
The Vigil@nce vulnerability database contains several thousand vulnerabilities.
This bulletin is published by the Vigil@nce team, which tracks computer vulnerabilities impacting systems and applications.
Systems vulnerabilities
|
