CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4645

strtod.c, as used in the zend_strtod function in PHP 5.2 before 5.2.17 and 5.3 before 5.3.5, and other products, allows context-dependent attackers to cause a denial of service (infinite loop) via a certain floating-point value in scientific notation, which is not properly handled in x87 FPU registers, as demonstrated using 2.2250738585072011e-308.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.295

EPSS Ranking 96.4%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2010-4645

Php » Php » Version: 5.2.0

cpe:2.3:a:php:php:5.2.0
Php » Php » Version: 5.2.1

cpe:2.3:a:php:php:5.2.1
Php » Php » Version: 5.2.10

cpe:2.3:a:php:php:5.2.10
Php » Php » Version: 5.2.11

cpe:2.3:a:php:php:5.2.11
Php » Php » Version: 5.2.12

cpe:2.3:a:php:php:5.2.12
Php » Php » Version: 5.2.13

cpe:2.3:a:php:php:5.2.13
Php » Php » Version: 5.2.14

cpe:2.3:a:php:php:5.2.14
Php » Php » Version: 5.2.15

cpe:2.3:a:php:php:5.2.15
Php » Php » Version: 5.2.16

cpe:2.3:a:php:php:5.2.16
Php » Php » Version: 5.2.2

cpe:2.3:a:php:php:5.2.2
Php » Php » Version: 5.2.3

cpe:2.3:a:php:php:5.2.3
Php » Php » Version: 5.2.4

cpe:2.3:a:php:php:5.2.4
Php » Php » Version: 5.2.5

cpe:2.3:a:php:php:5.2.5
Php » Php » Version: 5.2.6

cpe:2.3:a:php:php:5.2.6
Php » Php » Version: 5.2.7

cpe:2.3:a:php:php:5.2.7
Php » Php » Version: 5.2.8

cpe:2.3:a:php:php:5.2.8
Php » Php » Version: 5.2.9

cpe:2.3:a:php:php:5.2.9
Php » Php » Version: 5.3.0

cpe:2.3:a:php:php:5.3.0
Php » Php » Version: 5.3.1

cpe:2.3:a:php:php:5.3.1
Php » Php » Version: 5.3.2

cpe:2.3:a:php:php:5.3.2
Php » Php » Version: 5.3.3

cpe:2.3:a:php:php:5.3.3
Php » Php » Version: 5.3.4

cpe:2.3:a:php:php:5.3.4

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4645

Products

Pricing

Contact Us