CVE-2013-3735

high-risk
Published 2013-05-31

The Zend Engine in PHP before 5.4.16 RC1, and 5.5.0 before RC2, does not properly determine whether a parser error occurred, which allows context-dependent attackers to cause a denial of service (memory consumption and application crash) via a crafted function definition, as demonstrated by an attack within a shared web-hosting environment. NOTE: the vendor's http://php.net/security-note.php page says "for critical security situations you should be using OS-level security by running multiple web servers each as their own user id.

Do I need to act?

-
0.71% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10 High
NETWORK / LOW complexity

Affected Products (20)

Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php

Affected Vendors

Php

References (8)

https://bugs.php.net/bug.php?id=64660
https://github.com/php/php-src/blob/php-5.4.16RC1/NEWS
https://github.com/php/php-src/blob/php-5.5.0RC2/NEWS
Exploit https://github.com/php/php-src/commit/fb58e69a84f4fde603a630d2c9df2fa3be16d846
https://bugs.php.net/bug.php?id=64660
https://github.com/php/php-src/blob/php-5.4.16RC1/NEWS
https://github.com/php/php-src/blob/php-5.5.0RC2/NEWS
Exploit https://github.com/php/php-src/commit/fb58e69a84f4fde603a630d2c9df2fa3be16d846
50
/ 100
high-risk
Severity 26/34 · High
Exploitability 2/34 · Minimal
Exposure 22/34 · High