DNS: PHP dns_get_record Out of Bounds Read
This signature detects attempts to exploit a known vulnerability against PHP. The vulnerability is due to improper handling of malformed DNS responses. A remote attacker could exploit this vulnerability by sending a crafted DNS response to a vulnerable server. Successful exploitation could lead to information disclosure or crash of the PHP application.
Extended Description
An issue was discovered in PHP 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.2. dns_get_record misparses a DNS response, which can allow a hostile DNS server to cause PHP to misuse memcpy, leading to read operations going past the buffer allocated for DNS data. This affects php_parserr in ext/standard/dns.c for DNS_CAA and DNS_ANY queries.
Affected Products
Netapp storage_automation_store
Short Name
DNS:PHP-GET-RCRD-OB
Severity
Minor
Recommended
True
Recommended Action
Drop
Category
DNS
Keywords
Bounds CVE-2019-9022 Out PHP Read dns_get_record of
Release Date
03/13/2019
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
False Positive
Unknown
Vendors
Php
Netapp
Debian
Canonical
CVSS Score
5.0