CVE-2010-2484
The strrchr function in PHP 5.2 before 5.2.14 allows context-dependent attackers to obtain sensitive information (memory contents) or trigger memory corruption by causing a userspace interruption of an internal function or handler.
We have discovered 50,323 live websites that are affected by CVE-2010-2484.
Affected Software
| Product |  PHP |
| Category | Programming Languages |
| Vulnerable Domains | 50,323 live websites (0.68% of PHP install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 14 versions ( 2.74% of all versions) |
Details
- Published - Aug 21, 2010
- Updated - Aug 7, 2024
CVE References
Website Distribution by Country
Number of websites using CVE-2010-2484 United States | 3,622 websites |
 Taiwan | 16,061 websites |
 Germany | 8,748 websites |
 Hungary | 3,641 websites |
 Japan | 2,335 websites |
 Italy | 2,048 websites |
 France | 1,771 websites |
 Czech Republic | 1,320 websites |
 China | 1,221 websites |
 Russia | 1,163 websites |
Website Distribution by TLD
Number of websites using CVE-2010-2484| .com | 20,239 websites |
| .de | 7,971 websites |
| .info | 3,523 websites |
| .net | 1,337 websites |
| .it | 1,171 websites |
| .cz | 1,137 websites |
| .fr | 994 websites |
| .ru | 927 websites |
| .org | 850 websites |
| .jp | 666 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2010-2484
Top websites that are affected by CVE-2010-2484. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **********.com | United States | *** | |
| **********.us | United States | *,*** | |
| ***.**********.us | United States | *,*** | |
| *****.jp | Japan | **,*** | |
| ********.com | United States | **,*** | |
| **********.com | Taiwan | **,*** | |
| ******.com | Taiwan | **,*** | |
| ************.*********.hu | Hungary | **,*** | |
| ******.de | Germany | **,*** | |
| *********.jp | Japan | **,*** |
FAQ
A total of 50,323 websites have been identified as vulnerable to CVE-2010-2484, based on global website indexing conducted by WebTechSurvey.
The PHP is affected by the CVE-2010-2484 vulnerability.
PHP versions up to 5.2.14 are vulnerable to CVE-2010-2484.
CVE-2010-2484 is resolved in version 5.2.14 of PHP.
References
- http://support.apple.com/kb/HT4435
- http://marc.info/?l=bugtraq&m=133469208622507&w=2
- http://www.php.net/releases/5_2_14.php
- http://lists.apple.com/archives/security-announce/2010//Nov/msg00000.html
- http://lists.apple.com/archives/security-announce/2010//Aug/msg00003.html
- https://bugzilla.redhat.com/show_bug.cgi?id=619324
- http://marc.info/?l=bugtraq&m=133469208622507&w=2
- http://support.apple.com/kb/HT4312
- http://lists.opensuse.org/opensuse-security-announce/2010-10/msg00000.html