what is CVE-2012-2311 ?

Solution Verified - Updated -

Issue

  • Fix that was applied in PHP versions 5.3.12 and 5.4.2 to address CVE-2012-1823 (bug #818607) was incomplete and did not resolved the problem. A remote attacker could still use this flaw to remotely execute arbitrary code on the servers using affected PHP CGI configurations.

  • Does CVE-2012-2311 affect to RHEL5 and RHEL6 ?

Environment

  • Red Hat Enterprise Linux 5
  • Red Hat Enterprise Linux 6
  • php-5.1.6-34.el5_8.x86_64.rpm
  • php53

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In