Executive Summary

Informations
NameCVE-2019-11039First vendor Publication2019-06-18
VendorCveLast vendor Modification2019-06-20

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:N/A:P)
Cvss Base Score6.4Attack RangeNetwork
Cvss Impact Score4.9Attack ComplexityLow
Cvss Expoit Score10AuthenticationNone Required
Calculate full CVSS 2.0 Vectors scores

Detail

Function iconv_mime_decode_headers() in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to integer overflow when parsing MIME headers. This may lead to information disclosure or crash.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-11039

CWE : Common Weakness Enumeration

%idName
100 %CWE-125Out-of-bounds Read

CPE : Common Platform Enumeration

TypeDescriptionCount
Application133

Sources (Detail)

SourceUrl
BUGTRAQ https://seclists.org/bugtraq/2019/Sep/35
https://seclists.org/bugtraq/2019/Sep/38
CONFIRM https://bugs.php.net/bug.php?id=78069
DEBIAN https://www.debian.org/security/2019/dsa-4527
https://www.debian.org/security/2019/dsa-4529
REDHAT https://access.redhat.com/errata/RHSA-2019:2519
SUSE http://lists.opensuse.org/opensuse-security-announce/2019-07/msg00029.html

Alert History

If you want to see full details history, please login or register.
0
1
2
3
4
5
6
7
DateInformations
2019-09-25 01:10:38
  • Multiple Updates
2019-09-21 12:04:50
  • Multiple Updates
2019-08-20 12:04:53
  • Multiple Updates
2019-07-22 12:02:46
  • Multiple Updates
2019-06-21 05:19:09
  • Multiple Updates
2019-06-20 17:19:19
  • Multiple Updates
2019-06-19 17:20:07
  • Multiple Updates
2019-06-19 09:19:33
  • First insertion