Definition


New Search

HP-UX Running Apache with PHP Remote Denial of Service (DoS) Unauthorized Access Privileged Access Cross Site Scripting (XSS)

oval:org.mitre.oval:def:7394

The php_openssl_apply_verification_policy function in PHP before 5.2.11 does not properly perform certificate validation which has unknown impact and attack vectors probably related to an ability to spoof certificates.

Family:
unix
Status:
ACCEPTED
Platform(s):
  • HP-UX 11
Class:
vulnerability
Reference(s):
  • CVE-2009-3291
Product(s):