1 2 3 4 5 6

Vulnerabilidades rss pdf

Coordinación de Seguridad de la Información - UNAM-CERT -- DGTIC-UNAM

Vulnerabilidad de Seguridad UNAM-CERT-2005-384 Actualización de SUSE para php4/php5.

SUSE liberó varias actualizaciones para php4 y php5. Estas reparan varias vulnerabilidades, que pueden explotarse para comprometer un sistema vulnerable.

  • Fecha de Liberación: 31-Ago-2005
  • Fuente:

    SUSE Security Announcement
    SUSE-SA:2005:049

  • CVE ID: CAN-2005-1921 CAN-2005-2491 CAN-2005-2498
  • Riesgo Altamente crítico
  • Problema de Vulnerabilidad Remoto
  • Tipo de Vulnerabilidad Múltiples vulnerabilidades

Sistemas Afectados

SUSE Linux 9.0 php4 4.3.10
SUSE Linux 9.1 php4 4.3.10
SUSE Linux 9.2 php4 4.3.10
SUSE Linux 9.3 php4 4.3.10
SUSE Linux 9.3 php5 5.0.3
  1. Descripción

    SUSE liberó varias actualizaciones para php4 y php5. Estas reparan varias vulnerabilidades, que pueden explotarse por personas maliciosas para comprometer un sistema vulnerable.

  2. Errores en la librería PEAR::XML_RPC permitén a atacantes remotos pasar código PHP arbitrario a la función eval(). (CAN-2005-1921, CAN-2005-2498).

    SUSE Linux no utiliza la librería PEAR::XML_RPC, pero podría ser utilizada por aplicaciones PHP de terceros.

    Ver:
    Vulnerabilidad de ejecución de código PHP en PEAR XML_RPC.
    Ejecución de código PHP en etiquetas XML anidadas de PEAR XML_RPC.

  3. Se encontro un desbordamiento de variable en la librería PCRE (perl compatible regular expresión) que podría permitir a un atacante la ejecución de código. (CAN-2005-2491)

  • Impacto

    Negación de Servicio (DoS).

    Acceso al sistema.

  • Solución

    Aplicar los paquetes actualizados.

    x86 Platform:

    SUSE Linux 9.3:
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/apache2-mod_php4-4.3.10-14.9.i586.rpm
    f4e6d7578b6ae62a0b49989a3be4ef4b
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/apache2-mod_php5-5.0.3-14.9.i586.rpm
    79bb1fdc66068aba68a253d16a02f471
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/mod_php4-servlet-4.3.10-14.9.i586.rpm
    08708573a0dee6ea412f7afc0d472244
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-4.3.10-14.9.i586.rpm
    ffc0d7f665be377b1c9450f16d8b0b35
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-devel-4.3.10-14.9.i586.rpm
    44bbb9ec8f40b92030a591a718312ce1
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-exif-4.3.10-14.9.i586.rpm
    081168bede1cc4409c17fe71ea891f6e
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-fastcgi-4.3.10-14.9.i586.rpm
    f6beca45181a6f92cba938b6b1009b39
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-pear-4.3.10-14.9.i586.rpm
    c35765443f99ee337e8df8b54414ef74
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-session-4.3.10-14.9.i586.rpm
    9681a8e5dd6db224689d8e5dc6f07aff
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php4-sysvshm-4.3.10-14.9.i586.rpm
    9f18c0bce655a1eda2fa9db9cb703e68
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-5.0.3-14.9.i586.rpm
    d39bb57b5df06dc64e3cc5cf484c030c
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-devel-5.0.3-14.9.i586.rpm
    514561227c94e8af808dfb9d47a8143a
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-exif-5.0.3-14.9.i586.rpm
    a08670d24ea2af4e22425b9879804fa9
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-fastcgi-5.0.3-14.9.i586.rpm
    9c374d9ed218a85399d5a529f8f97417
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-pear-5.0.3-14.9.i586.rpm
    4cba59009162137d5e4a79f0c355ec15
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-sysvmsg-5.0.3-14.9.i586.rpm
    a31dd5f81ebe25fc69b4a3a29321fed9
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/i586/php5-sysvshm-5.0.3-14.9.i586.rpm
    4b1cf3f9ccfc1f4a546f188768a54da2
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-32bit-9.3-7.4.x86_64.rpm
    4cddafbceded22b220e48542f6371337

    SUSE Linux 9.2:
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/apache2-mod_php4-4.3.8-8.12.i586.rpm
    b5f30d4fcad5a1f8a3e5dfc9db519914
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/mod_php4-servlet-4.3.8-8.12.i586.rpm
    eed1a644b3908e719d81359b96ef4244
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-4.3.8-8.12.i586.rpm
    3a9fd735f7897fb97be921dee4afe850
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-devel-4.3.8-8.12.i586.rpm
    6145bf500d49378b1f7cd5441612ad92
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-exif-4.3.8-8.12.i586.rpm
    38c72905c9c47a6ab680faa781927020
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-fastcgi-4.3.8-8.12.i586.rpm
    8483c7ce1b73710f03120fb7cf009740
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-pear-4.3.8-8.12.i586.rpm
    202af06b5ee93fd667a7484d01c3089b
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-session-4.3.8-8.12.i586.rpm
    498f23a90eab4da6a06de67e44a84014
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/i586/php4-sysvshm-4.3.8-8.12.i586.rpm
    254f0ee5ac6d04f244a8cfd171fdff57
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-32bit-9.2-200508260320.x86_64.rpm
    528b00aeb3433f5829cd070a84cfeeb9

    SUSE Linux 9.1:
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/apache2-mod_php4-4.3.4-43.41.i586.rpm
    214e4ef40cb48c998342995cac9d04b8
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/mod_php4-core-4.3.4-43.41.i586.rpm
    f2d4e625ea55fa7ead3a754238ca7078
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/mod_php4-servlet-4.3.4-43.41.i586.rpm
    fabfae99a0462b49ec5f1109cd6820a9
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-4.3.4-43.41.i586.rpm
    ca1aaef816f44495a90d4fb487a26524
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-devel-4.3.4-43.41.i586.rpm
    66fe3a880315e1de5d408a5dcaca3680
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-exif-4.3.4-43.41.i586.rpm
    c21383cbc809a455c7eff45b8f533f52
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-fastcgi-4.3.4-43.41.i586.rpm
    21363ed91ae437ca66a97ba597c2529c
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-imap-4.3.4-43.41.i586.rpm
    ebdd8e83894392f455f57f8bf96022ea
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-mysql-4.3.4-43.41.i586.rpm
    f6bf0f02c69fe67d2b229000bb5c93de
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-pear-4.3.4-43.41.i586.rpm
    a2b8fbb9a6f9720e332d311096280aa8
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-recode-4.3.4-43.41.i586.rpm
    7a82acc19b8817a5b80e87bacfab33c7
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-servlet-4.3.4-43.41.i586.rpm
    654aa331a6353a34937d6688f8cb6d36
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-session-4.3.4-43.41.i586.rpm
    fd388995234e536a8d72983f3eb51ce1
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-sysvshm-4.3.4-43.41.i586.rpm
    d47c5fee9862e92daa317f48f3337b28
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/i586/php4-wddx-4.3.4-43.41.i586.rpm
    29bd1f214d830de2f70c093ad428452b

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/i386/update/9.1/rpm/src/php4-4.3.4-43.41.src.rpm
    dd586cc978292519a290d27439a9da28

    SUSE Linux 9.0:
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/apache2-mod_php4-4.3.3-194.i586.rpm
    72dc636b72a3e8b8703eb3d6b770ca61
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/mod_php4-4.3.3-194.i586.rpm
    a0934b5d7f27d2d86a9587dd5981e550
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/mod_php4-aolserver-4.3.3-194.i586.rpm
    8a9553c2157af21753305fc013bd4b75
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/mod_php4-core-4.3.3-194.i586.rpm
    9dce9a4f911cd1deed07096d5c5be00a
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/mod_php4-devel-4.3.3-194.i586.rpm
    5fab53be54518170d3885459ee51232f
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/i586/mod_php4-servlet-4.3.3-194.i586.rpm
    fd0e4d8d4a938711bc2a93c50a5a1be9

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/i386/update/9.0/rpm/src/mod_php4-4.3.3-194.src.rpm
    f9f22aee983bbb30e2a10b4343155587

    x86-64 Platform:

    SUSE Linux 9.3:
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/apache2-mod_php4-4.3.10-14.9.x86_64.rpm
    a3566598438cadf224fd5b1a126a6024
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/apache2-mod_php5-5.0.3-14.9.x86_64.rpm
    c6186821c83c329729f282fb8ca34be8
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/mod_php4-servlet-4.3.10-14.9.x86_64.rpm
    ac65da1e1109543f424e6abb1fa99201
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-4.3.10-14.9.x86_64.rpm
    70c628abfaef3a4749c4683a9fa6de25
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-devel-4.3.10-14.9.x86_64.rpm
    3dde57064fcec2d5fbb5eb8397174f43
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-exif-4.3.10-14.9.x86_64.rpm
    be6b952045156e8e39286cf31567f8c2
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-fastcgi-4.3.10-14.9.x86_64.rpm
    afcaf39f5dd99859f789e68d8183895d
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-pear-4.3.10-14.9.x86_64.rpm
    62d056349b1fffe351fb0d88c3d69905
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-session-4.3.10-14.9.x86_64.rpm
    1352247dee304526e024d8c4132fc04c
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php4-sysvshm-4.3.10-14.9.x86_64.rpm
    0b76af3f88a4482fc59b3e7ddba60ebd
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-5.0.3-14.9.x86_64.rpm
    915b53c32abeff07e509c7480946ba40
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-devel-5.0.3-14.9.x86_64.rpm
    99df6f9e22a93b0ae6a07689d04af43e
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-exif-5.0.3-14.9.x86_64.rpm
    e0cdc636f1234231653f0cdc354272be
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-fastcgi-5.0.3-14.9.x86_64.rpm
    6c25772c43098d4ceeba2637a06b21a0
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-pear-5.0.3-14.9.x86_64.rpm
    2621bf4f9a6582135e10e60861c16c73
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-sysvmsg-5.0.3-14.9.x86_64.rpm
    7a008af048763a61e05b5d90c94cdaa7
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/x86_64/php5-sysvshm-5.0.3-14.9.x86_64.rpm
    408072d7b235721984593b2daf4cc56f

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/php4-4.3.10-14.9.src.rpm
    2becfb1be4d621a677305153b6aeb04e
    ftp://ftp.suse.com/pub/suse/i386/update/9.3/rpm/src/php5-5.0.3-14.9.src.rpm
    2ec1cf29732840e136d7291677a58c46

    SUSE Linux 9.2:
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/apache2-mod_php4-4.3.8-8.12.x86_64.rpm
    b138dceb7fbc705676fc37c1959a7265
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/mod_php4-servlet-4.3.8-8.12.x86_64.rpm
    d8b17ce13cc0ffd38ab340d1374c27e9
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-4.3.8-8.12.x86_64.rpm
    89572dce1437f77010f224dde5f77b84
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-devel-4.3.8-8.12.x86_64.rpm
    af4ef7e10f30648c8d6397b3453eade5
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-exif-4.3.8-8.12.x86_64.rpm
    138673e37f145774abb545ff17b2d873
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-fastcgi-4.3.8-8.12.x86_64.rpm
    0af41c67a8a227f2e59d47530b79aef4
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-pear-4.3.8-8.12.x86_64.rpm
    a267c09190f6782bd408f3b9d451755f
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-session-4.3.8-8.12.x86_64.rpm
    400df3b11703fba3c363cb6cfd90425f
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/x86_64/php4-sysvshm-4.3.8-8.12.x86_64.rpm
    a0b37ffe882338dd6ed727fd657f7180

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/i386/update/9.2/rpm/src/php4-4.3.8-8.12.src.rpm
    b987cb8e60e74cac76b83a6b85092a13

    SUSE Linux 9.1:
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/apache2-mod_php4-4.3.4-43.41.x86_64.rpm
    1088ec323766692fdf30252386dd17d5
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/mod_php4-core-4.3.4-43.41.x86_64.rpm
    b32bec6f686d83cdff538c661c9bd693
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/mod_php4-servlet-4.3.4-43.41.x86_64.rpm
    6a4a2ee9725a7cbeda50f0bf3c30e1b0
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-4.3.4-43.41.x86_64.rpm
    eaace43d9273a5fbf79fa47af64cb764
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-devel-4.3.4-43.41.x86_64.rpm
    23ea7c1d4f9d4088201a39106062a169
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-exif-4.3.4-43.41.x86_64.rpm
    dd0df0fc61f5331bb7fa8d2fff929cff
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-fastcgi-4.3.4-43.41.x86_64.rpm
    e14efdeda23c06aac65e55db83555328
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-imap-4.3.4-43.41.x86_64.rpm
    1a81b3b1c7b6562c330e5fd8afb33489
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-mysql-4.3.4-43.41.x86_64.rpm
    4e5afde23ba37c5c83bcd2f4ea23e5a4
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-pear-4.3.4-43.41.x86_64.rpm
    3ec4a646f4254293af2423b1690e68c3
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-recode-4.3.4-43.41.x86_64.rpm
    70de23feb7e561f4f9225d82dd51ff6f
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-servlet-4.3.4-43.41.x86_64.rpm
    de543ba0db1f755f16afa77a1ad6ad06
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-session-4.3.4-43.41.x86_64.rpm
    973fcbda433eb8187b426ec93e8fefb2
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-sysvshm-4.3.4-43.41.x86_64.rpm
    42c4cc25a00aa42b83aad8be9cbcc265
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/x86_64/php4-wddx-4.3.4-43.41.x86_64.rpm
    5941a332be13d1a602d6bb2e48c7b188

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.1/rpm/src/php4-4.3.4-43.41.src.rpm
    2e021c18d66c00989a1fe019cb241064

    SUSE Linux 9.0:
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/apache2-mod_php4-4.3.3-194.x86_64.rpm
    c83318085caf523c2a4afcf7e707aaf4
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/mod_php4-4.3.3-194.x86_64.rpm
    f10309b963b542c0dedb3533c139bc9a
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/mod_php4-aolserver-4.3.3-194.x86_64.rpm
    19c7918452fdaee52677f3a7adad2863
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/mod_php4-core-4.3.3-194.x86_64.rpm
    deebef74b38aca7af032deec065a8f5e
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/mod_php4-devel-4.3.3-194.x86_64.rpm
    9979f459d175849bd4eda540a8044c3a
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/x86_64/mod_php4-servlet-4.3.3-194.x86_64.rpm
    f15b60a9766e6d9fd405a854e71e9809

    source rpm(s):
    ftp://ftp.suse.com/pub/suse/x86_64/update/9.0/rpm/src/mod_php4-4.3.3-194.src.rpm
    5bb5ca24643ef02c1e9b645a2656670c

  • Apéndices

    Mayor información.

    http://www.novell.com/
    http://www.seguridad.unam.mx/vulnerabilidades/
    http://www.seguridad.unam.mx/vulnerabilidades/
  • La Coordinación de Seguridad de la Información/UNAM-CERT agradece el apoyo en la elaboración ó traducción y revisión de éste Documento a:

    • Floriberto López Velázquez (flopez at seguridad dot unam dot mx)

    UNAM-CERT
    Equipo de Respuesta a Incidentes UNAM
    Coordinación de Seguridad de la Información

    incidentes at seguridad.unam.mx
    phishing at seguridad.unam.mx
    http://www.cert.org.mx
    http://www.seguridad.unam.mx
    ftp://ftp.seguridad.unam.mx
    Tel: 56 22 81 69
    Fax: 56 22 80 47


    Universidad Nacional Autonoma de México Aviso legal |  Créditos |  Staff |  Administración
    Copyright © Todos los derechos reservados
    UNAM - CERT