The remote host is missing an update to php5 announced via advisory USN-862-1.

The problem can be corrected by upgrading your system to the following package versions: Ubuntu 6.06 LTS: libapache2-mod-php5 5.1.2-1ubuntu3.17 php5-cgi 5.1.2-1ubuntu3.17 php5-cli 5.1.2-1ubuntu3.17 Ubuntu 8.04 LTS: libapache2-mod-php5 5.2.4-2ubuntu5.9 php5-cgi 5.2.4-2ubuntu5.9 php5-cli 5.2.4-2ubuntu5.9 Ubuntu 8.10: libapache2-mod-php5 5.2.6-2ubuntu4.5 php5-cgi 5.2.6-2ubuntu4.5 php5-cli 5.2.6-2ubuntu4.5 Ubuntu 9.04: libapache2-mod-php5 5.2.6.dfsg.1-3ubuntu4.4 php5-cgi 5.2.6.dfsg.1-3ubuntu4.4 php5-cli 5.2.6.dfsg.1-3ubuntu4.4 Ubuntu 9.10: libapache2-mod-php5 5.2.10.dfsg.1-2ubuntu6.3 php5-cgi 5.2.10.dfsg.1-2ubuntu6.3 php5-cli 5.2.10.dfsg.1-2ubuntu6.3 In general, a standard system upgrade is sufficient to effect the necessary changes. https://secure1.securityspace.com/smysecure/catid.html?in=USN-862-1

Maksymilian Arciemowicz discovered that PHP did not properly validate arguments to the dba_replace function. If a script passed untrusted input to the dba_replace function, an attacker could truncate the database. This issue only applied to Ubuntu 6.06 LTS, 8.04 LTS, and 8.10. (CVE-2008-7068) It was discovered that PHP's php_openssl_apply_verification_policy function did not correctly handle SSL certificates with zero bytes in the Common Name. A remote attacker could exploit this to perform a man in the middle attack. (CVE-2009-3291) It was discovered that PHP did not properly handle certain malformed images when being parsed by the Exif module. A remote attacker could exploit this flaw and cause the PHP server to crash, resulting in a denial of service. (CVE-2009-3292) Grzegorz Stachowiak discovered that PHP did not properly enforce restrictions in the tempnam function. An attacker could exploit this issue to bypass safe_mode restrictions. (CVE-2009-3557) Grzegorz Stachowiak discovered that PHP did not properly enforce restrictions in the posix_mkfifo function. An attacker could exploit this issue to bypass open_basedir restrictions. (CVE-2009-3558) Bogdan Calin discovered that PHP did not limit the number of temporary files created when handling multipart/form-data POST requests. A remote attacker could exploit this flaw and cause the PHP server to consume all available resources, resulting in a denial of service. (CVE-2009-4017) ATTENTION: This update changes previous PHP behaviour by limiting the number of files in a POST request to 50. This may be increased by adding a max_file_uploads directive to php.ini. It was discovered that PHP did not properly enforce restrictions in the proc_open function. An attacker could exploit this issue to bypass safe_mode_protected_env_vars restrictions and possibly execute arbitrary code with application privileges. (CVE-2009-4018)