Vulnerability Details : CVE-2011-3379
The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.
Vulnerability category: Execute code
Products affected by CVE-2011-3379
- cpe:2.3:a:php:php:5.3.7:*:*:*:*:*:*:*
- cpe:2.3:a:php:php:5.3.8:*:*:*:*:*:*:*
Threat overview for CVE-2011-3379
Top countries where our scanners detected CVE-2011-3379
Top open port discovered on systems with this issue
80
IPs affected by CVE-2011-3379 2,136
Threat actors abusing to this issue?
Yes
Find out if you* are
affected by CVE-2011-3379!
*Directly or indirectly through your vendors, service providers and 3rd parties.
Powered by
attack surface intelligence
from SecurityScorecard.
Exploit prediction scoring system (EPSS) score for CVE-2011-3379
6.02%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2011-3379
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
CWE ids for CVE-2011-3379
-
The product constructs all or part of a code segment using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the syntax or behavior of the intended code segment.Assigned by: nvd@nist.gov (Primary)
References for CVE-2011-3379
-
http://www.securityfocus.com/archive/1/519770/30/0/threaded
SecurityFocus
-
https://bugs.php.net/bug.php?id=55475
PHP :: Bug #55475 :: is_a() triggers autoloaderExploit
-
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
-
http://svn.php.net/viewvc/?view=revision&revision=317183
PHP: Revision 317183Patch
-
http://www.byte.nl/blog/2011/09/23/security-bug-in-is_a-function-in-php-5-3-7-5-3-8/
Security bug in is_a function in PHP 5.3.7 / 5.3.8Exploit
-
https://bugzilla.redhat.com/show_bug.cgi?id=741020
741020 – (CVE-2011-3379) CVE-2011-3379 php: changes to is_a() in 5.3.7 may allow arbitrary code execution with certain codePatch
-
http://securityreason.com/securityalert/8525
PHP 5.3.7+ issue is_a function - CXSecurity.com
Jump to