CVE Reference Map for Source SREASONRES

Description SecurityReason Research Advisory

This reference map lists the various references for SREASONRES and provides the associated CVE entries or candidates. It uses data from CVE version 20061101 and candidates that were active as of 2023-12-10.

Note that the list of references may not be complete.

SREASONRES:20051217 phpBB 2.0.18 XSS and Full Path Disclosure CVE-2005-4357 CVE-2005-4358
SREASONRES:20060105 phpBB 2.0.19 XSS CVE-2006-0063
SREASONRES:20060203 phpBB 2.0.19 Cross Site Request Forgeries and XSS Admin CVE-2006-0437 CVE-2006-0438
SREASONRES:20060216 Critical SQL Injection PHPNuke <= 7.8 - Your_Account module CVE-2006-0679
SREASONRES:20060408 copy() Safe Mode Bypass PHP 4.4.2 and 5.1.2 CVE-2006-1608
SREASONRES:20060408 function *() php/apache Crash PHP 4.4.2 and 5.1.2 CVE-2006-1549
SREASONRES:20060408 phpinfo() Cross Site Scripting PHP 5.1.2 and 4.4.2 CVE-2006-0996
SREASONRES:20060408 tempnam() open_basedir bypass PHP 4.4.2 and 5.1.2 CVE-2006-1494
SREASONRES:20060526 cURL Safe Mode Bypass PHP 4.4.2 and 5.1.4 CVE-2006-2563
SREASONRES:20060625 error_log() Safe Mode Bypass PHP 5.1.4 and 4.4.2 CVE-2006-3011
SREASONRES:20060909 PHP 5.1.6 / 4.4.4 Critical php_admin* bypass by ini_restore() CVE-2006-4625
SREASONRES:20061208 PHP 5.2.0 session.save_path safe_mode and open_basedir bypass CVE-2006-6383
SREASONRES:20070125 PHP 5.2.0 safe_mode bypass (by Writing Mode) CVE-2007-0448
SREASONRES:20070627 PHP 5.2.3 PHP 4.4.7, htaccess safemode and open_basedir Bypass CVE-2007-3378
SREASONRES:20070912 Apache2 Undefined Charset UTF-7 XSS Vulnerability CVE-2007-4465
SREASONRES:20080110 Apache (mod_proxy_ftp) Undefined Charset UTF-7 XSS Vulnerability CVE-2008-0005
SREASONRES:20080122 PHP 5.2.5 cURL safe_mode bypass CVE-2007-4850
SREASONRES:20080320 PHP 5.2.5 and prior : *printf() functions Integer Overflow CVE-2008-1384
SREASONRES:20080325 *BSD libc (strfmon) Multiple vulnerabilities CVE-2008-1391
SREASONRES:20080617 PHP 5.2.6 chdir(),ftok() (standard ext) safe_mode bypass CVE-2008-2666
SREASONRES:20080617 PHP 5.2.6 posix_access() (posix ext) safe_mode bypass CVE-2008-2665
SREASONRES:20080926 multiple vendor ftpd - Cross-site request forgery CVE-2008-4242 CVE-2008-4247
SREASONRES:20081120 PHP 5.2.6 (error_log) safe_mode bypass CVE-2008-5625
SREASONRES:20081127 PHP 5.2.6 dba_replace() destroying file CVE-2008-7068
SREASONRES:20081205 PHP 5.2.6 SAPI php_getuid() overload CVE-2008-5624
SREASONRES:20090304 libc:fts_*():multiple vendors, Denial-of-service CVE-2009-0537
SREASONRES:20090522 IPFilter (ippool) 4.1.31 lib/load_http.c buffer overflow CVE-2009-1476
SREASONRES:20090625 Multiple Vendors libc/gdtoa printf(3) Array Overrun CVE-2009-0689
SREASONRES:20090806 PHP 5.2.10/5.3.0 (zend_ini.c) Memory Disclosure CVE-2009-2626
SREASONRES:20090819 Kaspersky AV/IS 2010 (avp.exe) Denial-of-Service CVE-2009-2966
SREASONRES:20090917 glibc x<=2.10.1 stdio/strfmon.c Multiple Vulnerabilities CVE-2009-4880
SREASONRES:20091030 Multiple BSD printf(1) and multiple dtoa/*printf(3) vulnerabilities CVE-2009-0689
SREASONRES:20091120 K-Meleon 1.5.3 Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20091120 Opera 10.01 Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20091120 SeaMonkey 1.1.8 Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20091211 Camino 1.6.10 Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20091211 Flock 2.5.2 Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20091211 Sunbird 0.9 Array Overrun (code execution) CVE-2009-0689
SREASONRES:20091211 Thunderbird (lib) Remote Array Overrun (Arbitrary code execution) CVE-2009-0689
SREASONRES:20100108 MacOS X 10.5/10.6 libc/strtod(3) buffer overflow CVE-2009-0689
SREASONRES:20100211 PHP 5.2.12/5.3.1 session.save_path safe_mode and open_basedir bypass CVE-2010-1130
SREASONRES:20100423 MacOS X 10.6.3 filesystem hfs Denial of Service Vulnerability CVE-2010-0105
SREASONRES:20100527 libopie __readrec() off-by one (FreeBSD ftpd remote PoC) CVE-2010-1938
SREASONRES:20101007 Multiple Vendors libc/glob(3) resource exhaustion (+0day remote ftpd-anon) CVE-2010-2632 CVE-2010-4754 CVE-2010-4755 CVE-2010-4756
SREASONRES:20110107 GNU libc/regcomp(3) Multiple Vulnerabilities CVE-2010-4051 CVE-2010-4052
SREASONRES:20110217 PHP 5.3.5 grapheme_extract() NULL Pointer Dereference CVE-2011-0420
SREASONRES:20110301 vsftpd 2.3.2 remote denial-of-service CVE-2011-0762
SREASONRES:20110318 libzip 0.9.3 _zip_name_locate NULL Pointer Dereference (incl PHP 5.3.5) CVE-2011-0421
SREASONRES:20110502 Multiple Vendors libc/glob(3) GLOB_BRACE|GLOB_LIMIT memory exhaustion CVE-2010-2632 CVE-2011-0418 CVE-2011-2168
SREASONRES:20110512 Multiple Vendors libc/fnmatch(3) DoS (incl apache) CVE-2011-0419
SREASONRES:20110819 PHP 5.3.6 ZipArchive invalid use glob(3) CVE-2011-1657
Page Last Updated or Reviewed: December 10, 2023