Check Point Reference: | CPAI-2014-1718 |
Date Published: | 16 Jul 2014 |
Severity: | Medium |
Last Updated: | Tuesday 03 June, 2025 |
Source: | PHP Group |
Industry Reference: | CVE-2014-4049 |
Protection Provided by: |
Security Gateway |
Who is Vulnerable? | PHP from version 5.3.0 up to version 5.3.29 PHP from version 5.4.0 up to version 5.4.30 PHP from version 5.5.0 up to version 5.5.14 PHP version 5.6.0 alpha1 PHP version 5.6.0 alpha2 PHP version 5.6.0 alpha3 PHP version 5.6.0 alpha4 PHP version 5.6.0 alpha5 PHP version 5.6.0 beta1 PHP version 5.6.0 beta2 PHP version 5.6.0 beta3 Debian Linux version 7.0 Debian Linux version 8.0 OpenSUSE version 11.3 |
Vulnerability Description | A buffer overflow vulnerability exists in PHP. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system or cause application crashes. |
This protection will detect and block attempts to exploit this vulnerability.
In order for the protection to be activated, update your Security Gateway product to the latest IPS update. For information on how to update IPS, go to SBP-2006-05, click on Protection tab and select the version of your choice.
This protection's log will contain the following information:
Attack Name: Web Server Enforcement Violation.
Attack Information: PHP Buffer Overflow (CVE-2014-4049)