CVE-2009-4017

Severity

50%

Complexity

99%

Confidentiality

48%

PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict the number of temporary files created when handling a multipart/form-data POST request, which allows remote attackers to cause a denial of service (resource exhaustion), and makes it easier for remote attackers to exploit local file inclusion vulnerabilities, via multiple requests, related to lack of support for the max_file_uploads directive.

PHP before 5.2.12 and 5.3.x before 5.3.1 does not restrict the number of temporary files created when handling a multipart/form-data POST request, which allows remote attackers to cause a denial of service (resource exhaustion), and makes it easier for remote attackers to exploit local file inclusion vulnerabilities, via multiple requests, related to lack of support for the max_file_uploads directive.

CVSS 2.0 Base Score 5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:N/I:N/A:P).

Overview

Type

PHP

First reported 15 years ago

2009-11-24 00:30:00

Last updated 6 years ago

2018-10-10 19:48:00

Affected Software

PHP 5.2.11

5.2.11

PHP 5.3.0

5.3.0

References

APPLE-SA-2010-03-29-1

HPSBUX02543

[php-announce] 20091119 5.3.1 Release announcement

20091120 PHP "multipart/form-data" denial of service

37482

37821

40262

41480

41490

http://support.apple.com/kb/HT4077

http://www.acunetix.com/blog/websecuritynews/php-multipartform-data-denial-of-service/

DSA-1940

HPSBMA02568

MDVSA-2009:303

MDVSA-2009:305

[oss-security] 20091120 CVE request: php 5.3.1 update

Patch

[oss-security] 20091120 Re: CVE request: php 5.3.1 update

http://www.php.net/ChangeLog-5.php

Patch, Vendor Advisory

http://www.php.net/releases/5_2_12.php

http://www.php.net/releases/5_3_1.php

Patch, Vendor Advisory

20091120 PHP "multipart/form-data" denial of service

ADV-2009-3593

php-multipart-formdata-dos(54455)

oval:org.mitre.oval:def:10483

oval:org.mitre.oval:def:6667

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.