CVE-2012-1823: PHP-CGI Query String Parameter Vulnerability
First published: Fri May 11 2012(Updated: )
Fixed bug GHSA-3qgc-jrrr-25jv (Bypass of CVE-2012-1823, Argument Injection in PHP-CGI). (CVE-2024-4577)
Credit: cret@cert.org cret@cert.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| PHP | ||
| PHP | <=5.3.11 | |
| PHP | =5.0.0 | |
| PHP | =5.0.0-beta1 | |
| PHP | =5.0.0-beta2 | |
| PHP | =5.0.0-beta3 | |
| PHP | =5.0.0-beta4 | |
| PHP | =5.0.0-rc1 | |
| PHP | =5.0.0-rc2 | |
| PHP | =5.0.0-rc3 | |
| PHP | =5.0.1 | |
| PHP | =5.0.2 | |
| PHP | =5.0.3 | |
| PHP | =5.0.4 | |
| PHP | =5.0.5 | |
| PHP | =5.1.0 | |
| PHP | =5.1.1 | |
| PHP | =5.1.2 | |
| PHP | =5.1.3 | |
| PHP | =5.1.4 | |
| PHP | =5.1.5 | |
| PHP | =5.1.6 | |
| PHP | =5.2.0 | |
| PHP | =5.2.1 | |
| PHP | =5.2.2 | |
| PHP | =5.2.3 | |
| PHP | =5.2.4 | |
| PHP | =5.2.5 | |
| PHP | =5.2.6 | |
| PHP | =5.2.7 | |
| PHP | =5.2.8 | |
| PHP | =5.2.9 | |
| PHP | =5.2.10 | |
| PHP | =5.2.11 | |
| PHP | =5.2.12 | |
| PHP | =5.2.13 | |
| PHP | =5.2.14 | |
| PHP | =5.2.15 | |
| PHP | =5.2.16 | |
| PHP | =5.2.17 | |
| PHP | =5.3.0 | |
| PHP | =5.3.1 | |
| PHP | =5.3.2 | |
| PHP | =5.3.3 | |
| PHP | =5.3.4 | |
| PHP | =5.3.5 | |
| PHP | =5.3.6 | |
| PHP | =5.3.7 | |
| PHP | =5.3.8 | |
| PHP | =5.3.9 | |
| PHP | =5.3.10 | |
| PHP | =5.4.0 | |
| PHP | =5.4.1 | |
| PHP | <8.3.8 | 8.3.8 |
| PHP | <8.1.29 | 8.1.29 |
| PHP | <5.3.12 | |
| PHP | >=5.4.0<5.4.2 | |
| Fedora | =39 | |
| Fedora | =40 | |
| Debian | =6.0 | |
| HPE HP-UX | =b.11.23 | |
| HPE HP-UX | =b.11.31 | |
| openSUSE | =11.4 | |
| openSUSE | =12.1 | |
| SUSE Linux Enterprise Server | =10-sp4 | |
| SUSE Linux Enterprise Server | =11-sp2 | |
| suse linux enterprise server vmware | =11-sp2 | |
| SUSE Linux Enterprise Software Development Kit | =10-sp4 | |
| SUSE Linux Enterprise Software Development Kit | =11-sp2 | |
| Apple iOS and macOS | >=10.6.8<10.7.5 | |
| Apple iOS and macOS | >=10.8.0<10.8.2 | |
| Red Hat Application Stack | =2.0 | |
| Red Hat Gluster Storage Server | =2.0 | |
| Red Hat Storage | =2.0 | |
| redhat Storage for public cloud | =2.0 | |
| redhat enterprise Linux desktop | =6.0 | |
| redhat enterprise Linux eus | =5.6 | |
| redhat enterprise Linux eus | =6.1 | |
| redhat enterprise Linux eus | =6.2 | |
| redhat enterprise Linux server | =5.0 | |
| redhat enterprise Linux server | =6.0 | |
| redhat enterprise Linux server aus | =5.3 | |
| redhat enterprise Linux server aus | =5.6 | |
| redhat enterprise Linux workstation | =5.0 | |
| redhat enterprise Linux workstation | =6.0 |
Remedy
https://bugs.php.net/patch-display.php?bug_id=61910&patch=cgi.diff&revision=1335984315&display=1
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://eindbazen.net/2012/05/php-cgi-advisory-cve-2012-1823/
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c03360041
- http://lists.apple.com/archives/security-announce/2012/Sep/msg00004.html
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00002.html
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00007.html
- http://lists.opensuse.org/opensuse-security-announce/2012-05/msg00011.html
- http://marc.info/?l=bugtraq&m=134012830914727&w=2
- http://rhn.redhat.com/errata/RHSA-2012-0546.html
- http://rhn.redhat.com/errata/RHSA-2012-0547.html
- http://rhn.redhat.com/errata/RHSA-2012-0568.html
- http://rhn.redhat.com/errata/RHSA-2012-0569.html
- http://rhn.redhat.com/errata/RHSA-2012-0570.html
- http://secunia.com/advisories/49014
- http://secunia.com/advisories/49065
- http://secunia.com/advisories/49085
- http://secunia.com/advisories/49087
- http://support.apple.com/kb/HT5501
- http://www.debian.org/security/2012/dsa-2465
- http://www.kb.cert.org/vuls/id/520827
- http://www.kb.cert.org/vuls/id/673343
- http://www.mandriva.com/security/advisories?name=MDVSA-2012:068
- http://www.php.net/ChangeLog-5.php#5.4.2
- http://www.php.net/archive/2012.php#id2012-05-03-1
- http://www.securitytracker.com/id?1027022
- https://bugs.php.net/bug.php?id=61910
- https://bugs.php.net/patch-display.php?bug_id=61910&patch=cgi.diff&revision=1335984315&display=1
- https://www.php.net/ChangeLog-8.php#8.3.8 (Advisory)
- https://www.bleepingcomputer.com/news/security/php-fixes-critical-rce-flaw-impacting-all-versions-for-windows/
- https://www.php.net/ChangeLog-8.php#8.1.29 (Advisory)
- http://www.openwall.com/lists/oss-security/2024/06/07/1
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/PKGTQUOA2NTZ3RXN22CSAUJPIRUYRB4B/
- https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W45DBOH56NQDRTOM2DN2LNA2FZIMC3PK/
- https://www.bleepingcomputer.com/news/security/hackers-use-php-exploit-to-backdoor-windows-systems-with-new-malware/
- https://nvd.nist.gov/vuln/detail/CVE-2012-1823
Frequently Asked Questions
What is the severity of CVE-2012-1823?
CVE-2012-1823 is considered a medium severity vulnerability due to its potential to allow argument injection in PHP-CGI.
How do I fix CVE-2012-1823?
To fix CVE-2012-1823, upgrade PHP to version 5.3.12 or later, or 5.4.2 or later.
What versions of PHP are affected by CVE-2012-1823?
CVE-2012-1823 affects PHP versions 5.3.11 and earlier, as well as 5.4.1 and earlier.
How does CVE-2012-1823 impact PHP CGI configurations?
CVE-2012-1823 impacts PHP CGI configurations by allowing an attacker to bypass security measures through malformed query strings.
Is CVE-2012-1823 related to any other vulnerabilities?
CVE-2012-1823 has been linked to CVE-2024-4577, which addresses a bypass of the original issue.
- agent/type
- agent/title
- agent/description
- collector/bleeping-computer
- source/BleepingComputer
- alias/CVE-2024-4577
- alias/CVE-2012-1823
- agent/first-publish-date
- agent/author
- agent/remedy
- agent/severity
- agent/references
- agent/trending
- agent/weakness
- agent/source
- exploited/true
- collector/cisa-known-exploited
- source/CISA
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- collector/nvd-index
- collector/php-changelog
- source/PHP
- collector/mitre-cve
- source/MITRE
- agent/event
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- collector/nvd-cve
- vendor/php
- canonical/php
- version/php/5.3.11
- version/php/5.0.0
- version/php/5.0.0-beta1
- version/php/5.0.0-beta2
- version/php/5.0.0-beta3
- version/php/5.0.0-beta4
- version/php/5.0.0-rc1
- version/php/5.0.0-rc2
- version/php/5.0.0-rc3
- version/php/5.0.1
- version/php/5.0.2
- version/php/5.0.3
- version/php/5.0.4
- version/php/5.0.5
- version/php/5.1.0
- version/php/5.1.1
- version/php/5.1.2
- version/php/5.1.3
- version/php/5.1.4
- version/php/5.1.5
- version/php/5.1.6
- version/php/5.2.0
- version/php/5.2.1
- version/php/5.2.2
- version/php/5.2.3
- version/php/5.2.4
- version/php/5.2.5
- version/php/5.2.6
- version/php/5.2.7
- version/php/5.2.8
- version/php/5.2.9
- version/php/5.2.10
- version/php/5.2.11
- version/php/5.2.12
- version/php/5.2.13
- version/php/5.2.14
- version/php/5.2.15
- version/php/5.2.16
- version/php/5.2.17
- version/php/5.3.0
- version/php/5.3.1
- version/php/5.3.2
- version/php/5.3.3
- version/php/5.3.4
- version/php/5.3.5
- version/php/5.3.6
- version/php/5.3.7
- version/php/5.3.8
- version/php/5.3.9
- version/php/5.3.10
- version/php/5.4.0
- version/php/5.4.1
- vendor/fedoraproject
- canonical/fedora
- version/fedora/39
- version/fedora/40
- vendor/debian
- canonical/debian
- version/debian/6.0
- vendor/hp
- canonical/hpe hp-ux
- version/hpe hp-ux/b.11.23
- version/hpe hp-ux/b.11.31
- vendor/opensuse
- canonical/opensuse
- version/opensuse/11.4
- version/opensuse/12.1
- vendor/suse
- canonical/suse linux enterprise server
- version/suse linux enterprise server/10-sp4
- version/suse linux enterprise server/11-sp2
- canonical/suse linux enterprise server vmware
- version/suse linux enterprise server vmware/11-sp2
- canonical/suse linux enterprise software development kit
- version/suse linux enterprise software development kit/10-sp4
- version/suse linux enterprise software development kit/11-sp2
- vendor/apple
- canonical/apple ios and macos
- version/apple ios and macos/10.6.8
- version/apple ios and macos/10.8.0
- vendor/redhat
- canonical/red hat application stack
- version/red hat application stack/2.0
- canonical/red hat gluster storage server
- version/red hat gluster storage server/2.0
- canonical/red hat storage
- version/red hat storage/2.0
- canonical/redhat storage for public cloud
- version/redhat storage for public cloud/2.0
- canonical/redhat enterprise linux desktop
- version/redhat enterprise linux desktop/6.0
- canonical/redhat enterprise linux eus
- version/redhat enterprise linux eus/5.6
- version/redhat enterprise linux eus/6.1
- version/redhat enterprise linux eus/6.2
- canonical/redhat enterprise linux server
- version/redhat enterprise linux server/5.0
- version/redhat enterprise linux server/6.0
- canonical/redhat enterprise linux server aus
- version/redhat enterprise linux server aus/5.3
- version/redhat enterprise linux server aus/5.6
- canonical/redhat enterprise linux workstation
- version/redhat enterprise linux workstation/5.0
- version/redhat enterprise linux workstation/6.0