Signature Detail

HTTP: PHP SSL Certificate Validation Security Bypass

This signature detects attempts to exploit a known flaw in PHP. A successful attack can lead to unauthorized information disclosure.

Extended Description

The openssl_x509_parse function in openssl.c in the OpenSSL module in PHP before 5.4.18 and 5.5.x before 5.5.2 does not properly handle a '\0' character in a domain name in the Subject Alternative Name field of an X.509 certificate, which allows man-in-the-middle attackers to spoof arbitrary SSL servers via a crafted certificate issued by a legitimate Certification Authority, a related issue to CVE-2009-2408.

Affected Products

• canonical ubuntu_linux 10.04 (-:lts)
• canonical ubuntu_linux 12.04 (-:lts)
• canonical ubuntu_linux 12.10
• canonical ubuntu_linux 13.04
• php 5.0.0 (beta1)
• php 5.0.0 (beta2)
• php 5.0.0 (beta3)
• php 5.0.0 (beta4)
• php 5.0.0 (rc1)
• php 5.0.0 (rc2)
• php 5.0.0 (rc3)
• php 5.0.1
• php 5.0.2
• php 5.0.3
• php 5.0.4
• php 5.0.5
• php 5.1.0
• php 5.1.1
• php 5.1.2
• php 5.1.3
• php 5.1.4
• php 5.1.5
• php 5.1.6
• php 5.2.0
• php 5.2.1
• php 5.2.10
• php 5.2.11
• php 5.2.12
• php 5.2.13
• php 5.2.14
• php 5.2.15
• php 5.2.16
• php 5.2.17
• php 5.2.2
• php 5.2.3
• php 5.2.4
• php 5.2.5
• php 5.2.6
• php 5.2.7
• php 5.2.8
• php 5.2.9
• php 5.3.0
• php 5.3.1
• php 5.3.10
• php 5.3.11
• php 5.3.12
• php 5.3.13
• php 5.3.14
• php 5.3.15
• php 5.3.16
• php 5.3.17
• php 5.3.18
• php 5.3.19
• php 5.3.2
• php 5.3.20
• php 5.3.21
• php 5.3.22
• php 5.3.23
• php 5.3.24
• php 5.3.25
• php 5.3.26
• php 5.3.27
• php 5.3.3
• php 5.3.4
• php 5.3.5
• php 5.3.6
• php 5.3.7
• php 5.3.8
• php 5.3.9
• php 5.4.0
• php 5.4.1
• php 5.4.10
• php 5.4.11
• php 5.4.12 (rc1)
• php 5.4.12 (rc2)
• php 5.4.13 (rc1)
• php 5.4.14 (rc1)
• php 5.4.15 (rc1)
• php 5.4.16 (rc1)
• php 5.4.2
• php 5.4.3
• php 5.4.4
• php 5.4.5
• php 5.4.6
• php 5.4.7
• php 5.4.8
• php 5.4.9
• php 5.5.0
• php 5.5.1
• php up to 5.4.17
• redhat enterprise_linux 5

References

• BugTraq: 61776
• CVE: CVE-2013-4248