Signature Detail

Short Name	HTTP:PHP:DATEINTERVAL-DOS
Severity	Medium
Recommended	Yes
Recommended Action	Drop
Category	HTTP
Keywords	PHP DateInterval Heap Buffer Overread Denial of Service
Release Date	2014/02/25
Update Number	2349
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: PHP DateInterval Heap Buffer Overread Denial of Service

This signature detects attempts to exploit a known vulnerability against PHP DateInterval. A successful attack can result in a denial-of-service condition.

Extended Description

The scan function in ext/date/lib/parse_iso_intervals.c in PHP through 5.5.6 does not properly restrict creation of DateInterval objects, which might allow remote attackers to cause a denial of service (heap-based buffer over-read) via a crafted interval specification.

Affected Products

php 5.5.0 (alpha1)
php 5.5.0 (alpha2)
php 5.5.0 (alpha3)
php 5.5.0 (alpha4)
php 5.5.0 (alpha5)
php 5.5.0 (alpha6)
php 5.5.0 (beta1)
php 5.5.0 (beta2)
php 5.5.0 (beta3)
php 5.5.0 (beta4)
php 5.5.0 (rc1)
php 5.5.0 (rc2)
php 5.5.1
php 5.5.2
php 5.5.3
php 5.5.4
php 5.5.5
php up to 5.5.6

References

BugTraq: 64018
CVE: CVE-2013-6712

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: PHP DateInterval Heap Buffer Overread Denial of Service

Extended Description

Affected Products

References