The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters.

According to the versions of the file packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities :

  - A denial of service flaw was found in the File     Information (fileinfo) extension rules for detecting     AWK files. A remote attacker could use this flaw to     cause a PHP application using fileinfo to consume an     excessive amount of CPU.(CVE-2013-7345)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-3479)

  - An ouf-of-bounds read flaw was found in the way the     file utility processed certain Pascal strings. A remote     attacker could cause an application using the file     utility (for example, PHP using the fileinfo module) to     crash if it was used to identify the type of the     attacker-supplied file.(CVE-2014-9652)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-0207)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-3480)

  - It was found that the fix for CVE-2012-1571 was     incomplete the File Information (fileinfo) extension     did not correctly parse certain Composite Document     Format (CDF) files. A remote attacker could use this     flaw to crash a PHP application using fileinfo via a     specially crafted CDF file.(CVE-2014-3587)

  - A buffer overflow flaw was found in the way the File     Information (fileinfo) extension processed certain     Pascal strings. A remote attacker able to make a PHP     application using fileinfo convert a specially crafted     Pascal string provided by an image file could cause     that application to crash.(CVE-2014-3478)

  - Multiple flaws were found in the File Information     (fileinfo) extension regular expression rules for     detecting various files. A remote attacker could use     either of these flaws to cause a PHP application using     fileinfo to consume an excessive amount of     CPU.(CVE-2014-3538)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-3487)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension handled search rules.
    A remote attacker could use this flaw to cause a PHP     application using fileinfo to crash or consume an     excessive amount of CPU.(CVE-2014-2270)

  - A flaw was found in the way the File Information     (fileinfo) extension parsed Executable and Linkable     Format (ELF) files. A remote attacker could use this     flaw to cause a PHP application using fileinfo to     consume an excessive amount of system     resources.(CVE-2014-8117)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-0237)

  - A flaw was found in the way the File Information     (fileinfo) extension parsed Executable and Linkable     Format (ELF) files. A remote attacker could use this     flaw to cause a PHP application using fileinfo to crash     or disclose certain portions of server     memory.(CVE-2014-9653)

  - A denial of service flaw was found in the way the File     Information (fileinfo) extension parsed certain     Composite Document Format (CDF) files. A remote     attacker could use this flaw to crash a PHP application     using fileinfo via a specially crafted CDF     file.(CVE-2014-0238)

Note that Tenable Network Security has extracted the preceding description block directly from the EulerOS security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

A specifically crafted Composite Document File (CDF) file can trigger an out-of-bounds read or an invalid pointer dereference.
[CVE-2012-1571]

A flaw in regular expression in the awk script detector makes use of multiple wildcards with unlimited repetitions. [CVE-2013-7345]

A malicious input file could trigger infinite recursion in libmagic(3). [CVE-2014-1943]

A specifically crafted Portable Executable (PE) can trigger out-of-bounds read. [CVE-2014-2270] Impact : An attacker who can cause file(1) or any other applications using the libmagic(3) library to be run on a maliciously constructed input can the application to crash or consume excessive CPU resources, resulting in a denial-of-service.

Multiple vulnerabilities has been discovered and corrected in php :

It was discovered that the file utility contains a flaw in the handling of indirect magic rules in the libmagic library, which leads to an infinite recursion when trying to determine the file type of certain files (CVE-2014-1943).

A flaw was found in the way the file utility determined the type of Portable Executable (PE) format files, the executable format used on Windows. A malicious PE file could cause the file utility to crash or, potentially, execute arbitrary code (CVE-2014-2270).

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters (CVE-2013-7345).

PHP FPM in PHP versions before 5.4.28 and 5.5.12 uses a UNIX domain socket with world-writable permissions by default, which allows any local user to connect to it and execute PHP scripts as the apache user (CVE-2014-0185).

A flaw was found in the way file's Composite Document Files (CDF) format parser handle CDF files with many summary info entries. The cdf_unpack_summary_info() function unnecessarily repeatedly read the info from the same offset. This led to many file_printf() calls in cdf_file_property_info(), which caused file to use an excessive amount of CPU time when parsing a specially crafted CDF file (CVE-2014-0237).

A flaw was found in the way file parsed property information from Composite Document Files (CDF) files. A property entry with 0 elements triggers an infinite loop (CVE-2014-0238).

The unserialize() function in PHP before 5.4.30 and 5.5.14 has a Type Confusion issue related to the SPL ArrayObject and SPLObjectStorage Types (CVE-2014-3515).

It was discovered that PHP is vulnerable to a heap-based buffer overflow in the DNS TXT record parsing. A malicious server or man-in-the-middle attacker could possibly use this flaw to execute arbitrary code as the PHP interpreter if a PHP application uses dns_get_record() to perform a DNS query (CVE-2014-4049).

A flaw was found in the way file parsed property information from Composite Document Files (CDF) files, where the mconvert() function did not correctly compute the truncated pascal string size (CVE-2014-3478).

Multiple flaws were found in the way file parsed property information from Composite Document Files (CDF) files, due to insufficient boundary checks on buffers (CVE-2014-0207, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487).

The phpinfo() function in PHP before 5.4.30 and 5.5.14 has a Type Confusion issue that can cause it to leak arbitrary process memory (CVE-2014-4721).

Use-after-free vulnerability in ext/spl/spl_array.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted ArrayIterator usage within applications in certain web-hosting environments (CVE-2014-4698).

Use-after-free vulnerability in ext/spl/spl_dllist.c in the SPL component in PHP through 5.5.14 allows context-dependent attackers to cause a denial of service or possibly have unspecified other impact via crafted iterator usage within applications in certain web-hosting environments (CVE-2014-4670).

file before 5.19 does not properly restrict the amount of data read during a regex search, which allows remote attackers to cause a denial of service (CPU consumption) via a crafted file that triggers backtracking during processing of an awk rule, due to an incomplete fix for CVE-2013-7345 (CVE-2014-3538).

Integer overflow in the cdf_read_property_info function in cdf.c in file through 5.19, as used in the Fileinfo component in PHP before 5.4.32 and 5.5.x before 5.5.16, allows remote attackers to cause a denial of service (application crash) via a crafted CDF file. NOTE:
this vulnerability exists because of an incomplete fix for CVE-2012-1571 (CVE-2014-3587).

Multiple buffer overflows in the php_parserr function in ext/standard/dns.c in PHP before 5.4.32 and 5.5.x before 5.5.16 allow remote DNS servers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted DNS record, related to the dns_get_record function and the dn_expand function. NOTE: this issue exists because of an incomplete fix for CVE-2014-4049 (CVE-2014-3597).

An integer overflow flaw in PHP's unserialize() function was reported.
If unserialize() were used on untrusted data, this issue could lead to a crash or potentially information disclosure (CVE-2014-3669).

A heap corruption issue was reported in PHP's exif_thumbnail() function. A specially crafted JPEG image could cause the PHP interpreter to crash or, potentially, execute arbitrary code (CVE-2014-3670).

If client-supplied input was passed to PHP's cURL client as a URL to download, it could return local files from the server due to improper handling of null bytes (PHP#68089).

An out-of-bounds read flaw was found in file's donote() function in the way the file utility determined the note headers of a elf file.
This could possibly lead to file executable crash (CVE-2014-3710).

A use-after-free flaw was found in PHP unserialize(). An untrusted input could cause PHP interpreter to crash or, possibly, execute arbitrary code when processed using unserialize() (CVE-2014-8142).

Double free vulnerability in the zend_ts_hash_graceful_destroy function in zend_ts_hash.c in the Zend Engine in PHP before 5.5.21 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors (CVE-2014-9425).

sapi/cgi/cgi_main.c in the CGI component in PHP before 5.5.21, when mmap is used to read a .php file, does not properly consider the mapping's length during processing of an invalid file that begins with a # character and lacks a newline character, which causes an out-of-bounds read and might allow remote attackers to obtain sensitive information from php-cgi process memory by leveraging the ability to upload a .php file or trigger unexpected code execution if a valid PHP script is present in memory locations adjacent to the mapping (CVE-2014-9427).

Use after free vulnerability in unserialize() in PHP before 5.5.21 (CVE-2015-0231).

Free called on an uninitialized pointer in php-exif in PHP before 5.5.21 (CVE-2015-0232).

The readelf.c source file has been removed from PHP's bundled copy of file's libmagic, eliminating exposure to denial of service issues in ELF file parsing such as CVE-2014-8116, CVE-2014-8117, CVE-2014-9620 and CVE-2014-9621 in PHP's fileinfo module.

S. Paraschoudis discovered that PHP incorrectly handled memory in the enchant binding. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2014-9705).

Taoguang Chen discovered that PHP incorrectly handled unserializing objects. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-0273).

It was discovered that PHP incorrectly handled memory in the phar extension. A remote attacker could use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-2301).

Use-after-free vulnerability in the process_nested_data function in ext/standard/var_unserializer.re in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code via a crafted unserialize call that leverages improper handling of duplicate numerical keys within the serialized properties of an object. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-8142 (CVE-2015-0231).

The exif_process_unicode function in ext/exif/exif.c in PHP before 5.4.37, 5.5.x before 5.5.21, and 5.6.x before 5.6.5 allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized pointer free and application crash) via crafted EXIF data in a JPEG image (CVE-2015-0232).

An integer overflow flaw, leading to a heap-based buffer overflow, was found in the way libzip, which is embedded in PHP, processed certain ZIP archives. If an attacker were able to supply a specially crafted ZIP archive to an application using libzip, it could cause the application to crash or, possibly, execute arbitrary code (CVE-2015-2331).

It was discovered that the PHP opcache component incorrectly handled memory. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1351).

It was discovered that the PHP PostgreSQL database extension incorrectly handled certain pointers. A remote attacker could possibly use this issue to cause PHP to crash, resulting in a denial of service, or possibly execute arbitrary code (CVE-2015-1352).

PHP contains a bundled copy of the file utility's libmagic library, so it was vulnerable to the libmagic issues.

The updated php packages have been patched and upgraded to the 5.5.23 version which is not vulnerable to these issues. The libzip packages has been patched to address the CVE-2015-2331 flaw.

A bug in the php zip extension that could cause a crash has been fixed (mga#13820)

Additionally the jsonc and timezonedb packages has been upgraded to the latest versions and the PECL packages which requires so has been rebuilt for php-5.5.23.

Several vulnerabilities were found in PHP, a general-purpose scripting language commonly used for web application development. It has been decided to follow the stable 5.4.x releases for the Wheezy PHP packages. Consequently the vulnerabilities are addressed by upgrading PHP to a new upstream version 5.4.34, which includes additional bug fixes, new features and possibly incompatible changes. Please refer to the upstream changelog for more information :

 http://php.net/ChangeLog-5.php#5.4.34

According to its banner, the version of PHP installed on the remote host is a development version of 5.6.0. It is, therefore, affected by multiple vulnerabilities.

Note that Nessus has not attempted to exploit this issue but has instead relied only on application's self-reported version number.

The remote host is running a version of Mac OS X 10.9.x that is prior to version 10.9.5. This update contains several security-related fixes for the following components :

  - apache_mod_php
  - Bluetooth
  - CoreGraphics
  - Foundation
  - Intel Graphics Driver
  - IOAcceleratorFamily
  - IOHIDFamily
  - IOKit
  - Kernel
  - Libnotify
  - OpenSSL
  - QT Media Foundation
  - ruby

Note that successful exploitation of the most serious issues can result in arbitrary code execution.

The remote host is affected by the vulnerability described in GLSA-201408-11 (PHP: Multiple vulnerabilities)

    Multiple vulnerabilities have been discovered in PHP. Please review the       CVE identifiers referenced below for details.
  Impact :

    A context-dependent attacker can cause arbitrary code execution, create       a Denial of Service condition, read or write arbitrary files, impersonate       other servers, hijack a web session, or have other unspecified impact.
      Additionally, a local attacker could gain escalated privileges.
  Workaround :

    There is no known workaround at this time.

The remote host is affected by the vulnerability described in GLSA-201408-08 (file: Denial of Service)

    BEGIN regular expression in the awk script detector in       magic/Magdir/commands uses multiple wildcards with unlimited repetitions.
  Impact :

    A context-dependent attacker could entice a user to open a specially       crafted file,       possibly resulting in a Denial of Service condition.
  Workaround :

    There is no known workaround at this time.

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1013 advisory.

    - fileinfo: cdf_unpack_summary_info() excessive looping       DoS. CVE-2014-0237
    - fileinfo: CDF property info parsing nelements infinite       loop. CVE-2014-0238
    - fileinfo: cdf_check_stream_offset insufficient boundary       check. CVE-2014-3479
    - fileinfo: cdf_count_chain insufficient boundary check       CVE-2014-3480
    - fileinfo: cdf_read_short_sector insufficient boundary       check. CVE-2014-0207
    - fileinfo: cdf_read_property_info insufficient boundary       check. CVE-2014-3487
    - fileinfo: fix extensive backtracking CVE-2013-7345
    - core: type confusion issue in phpinfo(). CVE-2014-4721
    - core: fix heap-based buffer overflow in DNS TXT record       parsing. CVE-2014-4049

Tenable has extracted the preceding description block directly from the Oracle Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Updated php packages that fix multiple security issues are now available for Red Hat Enterprise Linux 7.

The Red Hat Security Response Team has rated this update as having Moderate security impact. Common Vulnerability Scoring System (CVSS) base scores, which give detailed severity ratings, are available for each vulnerability from the CVE links in the References section.

PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. PHP's fileinfo module provides functions used to identify a particular file according to the type of data contained by the file.

A denial of service flaw was found in the File Information (fileinfo) extension rules for detecting AWK files. A remote attacker could use this flaw to cause a PHP application using fileinfo to consume an excessive amount of CPU. (CVE-2013-7345)

Multiple denial of service flaws were found in the way the File Information (fileinfo) extension parsed certain Composite Document Format (CDF) files. A remote attacker could use either of these flaws to crash a PHP application using fileinfo via a specially crafted CDF file. (CVE-2014-0207, CVE-2014-0237, CVE-2014-0238, CVE-2014-3479, CVE-2014-3480, CVE-2014-3487)

A heap-based buffer overflow flaw was found in the way PHP parsed DNS TXT records. A malicious DNS server or a man-in-the-middle attacker could possibly use this flaw to execute arbitrary code as the PHP interpreter if a PHP application used the dns_get_record() function to perform a DNS query. (CVE-2014-4049)

A type confusion issue was found in PHP's phpinfo() function. A malicious script author could possibly use this flaw to disclose certain portions of server memory. (CVE-2014-4721)

A type confusion issue was found in the SPL ArrayObject and SPLObjectStorage classes' unserialize() method. A remote attacker able to submit specially crafted input to a PHP application, which would then unserialize this input using one of the aforementioned methods, could use this flaw to execute arbitrary code with the privileges of the user running that PHP application. (CVE-2014-3515)

The CVE-2014-0207, CVE-2014-0237, CVE-2014-0238, CVE-2014-3479, CVE-2014-3480, and CVE-2014-3487 issues were discovered by Francisco Alonso of Red Hat Product Security.

All php users are advised to upgrade to these updated packages, which contain backported patches to correct these issues. After installing the updated packages, the httpd daemon must be restarted for the update to take effect.

The remote Ubuntu 14.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-2278-1 advisory.

    Mike Frysinger discovered that the file awk script detector used multiple wildcard with unlimited     repetitions. An attacker could use this issue to cause file to consume resources, resulting in a denial of     service. (CVE-2013-7345)

    Francisco Alonso discovered that file incorrectly handled certain CDF documents. A attacker could use this     issue to cause file to hang or crash, resulting in a denial of service. (CVE-2014-0207, CVE-2014-3478,     CVE-2014-3479, CVE-2014-3480, CVE-2014-3487)

    Jan Kalua discovered that file did not properly restrict the amount of data read during regex searches.
    An attacker could use this issue to cause file to consume resources, resulting in a denial of service.
    (CVE-2014-3538)

Tenable has extracted the preceding description block directly from the Ubuntu security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Security update to new File version 5.19 fixing 8 CVEs found in previous two months.

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

file was updated to fix extensive backtracking in awk rule regular expression which could lead to a CPU consumption denial of service.

New php packages are available for Slackware 14.0, 14.1, and -current to fix a security issue.

03 Apr 2014, PHP 5.5.11

Core :

  - Allow zero length comparison in substr_compare() (Tjerk)

    - Fixed bug #60602 (proc_open() changes environment       array) (Tjerk)

SPL :

  - Added feature #65545 (SplFileObject::fread()) (Tjerk)

cURL :

  - Fixed bug #66109 (Can't reset CURLOPT_CUSTOMREQUEST to     default behaviour) (Tjerk)

    - Fix compilation on libcurl versions between 7.10.5 and       7.12.2, inclusive. (Adam)

FPM :

  - Added clear_env configuration directive to disable     clearenv() call. (Github PR# 598, Paul Annesley)

Fileinfo :

  - Fixed bug #66946 (fileinfo: extensive backtracking in     awk rule regular expression). (CVE-2013-7345) (Remi)

GD :

  - Fixed bug #66714 (imageconvolution breakage). (Brad     Daily)

    - Fixed bug #66869 (Invalid 2nd argument crashes       imageaffinematrixget) (Pierre)

    - Fixed bug #66887 (imagescale - poor quality of scaled       image). (Remi)

    - Fixed bug #66890 (imagescale segfault). (Remi)

    - Fixed bug #66893 (imagescale ignore method argument).
      (Remi)

Hash :

  - hash_pbkdf2() now works correctly if the $length     argument is not specified. (Nikita)

Intl :

  - Fixed bug #66873 (A reproductible crash in UConverter     when given invalid encoding) (Stas)

Mail :

  - Fixed bug #66535 (Don't add newline after     X-PHP-Originating-Script) (Tjerk)

MySQLi :

  - Fixed bug #66762 (Segfault in mysqli_stmt::bind_result()     when link closed) (Remi)

OPCache :

  - Added function opcache_is_script_cached(). (Danack)

    - Added information about interned strings usage.
      (Terry, Julien, Dmitry)

Openssl :

  - Fixed bug #66833 (Default disgest algo is still MD5,     switch to SHA1). (Remi)

GMP :

  - Fixed bug #66872 (invalid argument crashes gmp_testbit)     (Pierre)

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

A vulnerability has been discovered and corrected in php :

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters (CVE-2013-7345).

The updated php packages have been upgraded to the 5.5.11 version which is not vulnerable to this issue.

Also, the timezonedb PHP PECL module has been updated to the latest 2014.2 version.

Additionally, the PECL packages which requires so has been rebuilt for php-5.5.11.

Updated file packages fix security vulnerabilities :

The BEGIN regular expression in the awk script detector in magic/Magdir/commands in file before 5.15 uses multiple wildcards with unlimited repetitions, which allows context-dependent attackers to cause a denial of service (CPU consumption) via a crafted ASCII file that triggers a large amount of backtracking, as demonstrated via a file with many newline characters (CVE-2013-7345).

According to its banner, the version of PHP 5.5.x installed on the remote host is a version prior to 5.5.11. It is, therefore, potentially affected by a denial of service vulnerability.

A flaw exists in the awk script detector within magic/Magdir/commands where multiple wildcards with unlimited repetitions are used. This could allow a context dependent attacker to cause a denial of service with a specially crafted ASCII file.

Note that this plugin has not attempted to exploit this issue, but has instead relied only on PHP's self-reported version number.

According to its banner, the version of PHP 5.4.x installed on the remote host is a version prior to 5.4.27. It is, therefore, potentially affected by a denial of service vulnerability.

A flaw exists in the awk script detector within magic/Magdir/commands where multiple wildcards with unlimited repetitions are used. This could allow a context dependent attacker to cause a denial of service with a specially crafted ASCII file.

Note that this plugin has not attempted to exploit this issue, but instead relied only on PHP's self-reported version number.

fix #1079847 - fix for CVE-2013-7345 fix #1079847 - fix for CVE-2013-7345

Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.

Several vulnerabilities have been found in file, a file type classification tool.

Aaron Reffett reported a flaw in the way the file utility determined the type of Portable Executable (PE) format files, the executable format used on Windows. When processing a defective or intentionally prepared PE executable which contains invalid offset information, the file_strncmp routine will access memory that is out of bounds, causing file to crash. The Common Vulnerabilities and Exposures project ID CVE-2014-2270 has been assigned to identify this flaw.

Mike Frysinger reported that file's rule for detecting AWK scripts significantly slows down file. The regular expression to detect AWK files contained two star operators, which could be exploited to cause excessive backtracking in the regex engine.

ID	Name	Product	Family	Severity
124927	EulerOS Virtualization 3.0.1.0 : file (EulerOS-SA-2019-1424)	Nessus	Huawei Local Security Checks	high
92905	FreeBSD : FreeBSD -- Multiple vulnerabilities in file(1) and libmagic(3) (70140f20-6007-11e6-a6c3-14dae9d210b8)	Nessus	FreeBSD Local Security Checks	medium
82333	Mandriva Linux Security Advisory : php (MDVSA-2015:080)	Nessus	Mandriva Local Security Checks	high
78861	Debian DSA-3064-1 : php5 - security update	Nessus	Debian Local Security Checks	high
78556	PHP 5.6.0 Multiple Vulnerabilities	Nessus	CGI abuses	high
78286	Amazon Linux AMI : php54 (ALAS-2014-343)	Nessus	Amazon Linux Local Security Checks	medium
78285	Amazon Linux AMI : php55 (ALAS-2014-342)	Nessus	Amazon Linux Local Security Checks	medium
78276	Amazon Linux AMI : php54 (ALAS-2014-333)	Nessus	Amazon Linux Local Security Checks	medium
78275	Amazon Linux AMI : php55 (ALAS-2014-332)	Nessus	Amazon Linux Local Security Checks	medium
77748	Mac OS X 10.9.x < 10.9.5 Multiple Vulnerabilities	Nessus	MacOS X Local Security Checks	critical
77455	GLSA-201408-11 : PHP: Multiple vulnerabilities	Nessus	Gentoo Local Security Checks	high
77452	GLSA-201408-08 : file: Denial of Service	Nessus	Gentoo Local Security Checks	medium
77044	Oracle Linux 7 : php (ELSA-2014-1013)	Nessus	Oracle Linux Local Security Checks	critical
77033	CentOS 7 : php (CESA-2014:1013)	Nessus	CentOS Local Security Checks	high
77016	RHEL 7 : php (RHSA-2014:1013)	Nessus	Red Hat Local Security Checks	high
76525	Ubuntu 14.04 LTS : file vulnerabilities (USN-2278-1)	Nessus	Ubuntu Local Security Checks	critical
76377	Fedora 20 : file-5.19-1.fc20 (2014-7992)	Nessus	Fedora Local Security Checks	medium
75311	openSUSE Security Update : file (openSUSE-SU-2014:0481-1)	Nessus	SuSE Local Security Checks	medium
73651	Amazon Linux AMI : file (ALAS-2014-323)	Nessus	Amazon Linux Local Security Checks	medium
73638	Slackware 14.0 / 14.1 / current : php (SSA:2014-111-02)	Nessus	Slackware Local Security Checks	medium
73542	Fedora 20 : php-5.5.11-1.fc20 (2014-4767)	Nessus	Fedora Local Security Checks	medium
73540	Fedora 19 : php-5.5.11-1.fc19 (2014-4735)	Nessus	Fedora Local Security Checks	medium
73466	Mandriva Linux Security Advisory : php (MDVSA-2014:075)	Nessus	Mandriva Local Security Checks	medium
73448	Mandriva Linux Security Advisory : file (MDVSA-2014:073)	Nessus	Mandriva Local Security Checks	medium
73411	PHP 5.5.x < 5.5.11 awk Magic Parsing BEGIN DoS	Nessus	CGI abuses	medium
73338	PHP 5.4.x < 5.4.27 awk Magic Parsing BEGIN DoS	Nessus	CGI abuses	medium
73218	Fedora 20 : file-5.14-20.fc20 (2014-4340)	Nessus	Fedora Local Security Checks	medium
72952	Debian DSA-2873-1 : file - several vulnerabilities	Nessus	Debian Local Security Checks	medium

Detections

Analytics

CVE-2013-7345

high

Tenable Plugins

high

medium

high

high

high

medium

medium

medium

medium

critical

high

medium

critical

high

high

critical

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium

medium