CVE-2011-1468

PHP < 5.3.6 - Denial of Service via OpenSSL Extension Memory Leak

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2011-1468. PoCs published by dovbysh.

AI-analyzed exploit summary This exploit demonstrates a denial-of-service vulnerability in PHP's OpenSSL extension by repeatedly calling openssl_encrypt with a large loop, causing excessive memory consumption. It targets versions prior to PHP 5.3.6.

Description

Multiple memory leaks in the OpenSSL extension in PHP before 5.3.6 might allow remote attackers to cause a denial of service (memory consumption) via (1) plaintext data to the openssl_encrypt function or (2) ciphertext data to the openssl_decrypt function.

Exploits (2)

exploitdb WORKING POC VERIFIED
by dovbysh · phpdosphp
https://www.exploit-db.com/exploits/35486

This exploit demonstrates a denial-of-service vulnerability in PHP's OpenSSL extension by repeatedly calling openssl_encrypt with a large loop, causing excessive memory consumption. It targets versions prior to PHP 5.3.6.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: PHP with OpenSSL extension < 5.3.6
No auth needed
Prerequisites: PHP with vulnerable OpenSSL extension
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by dovbysh · phpdosphp
https://www.exploit-db.com/exploits/35487

This exploit demonstrates a denial-of-service vulnerability in PHP's OpenSSL extension by repeatedly encrypting and decrypting data, causing excessive memory consumption. The issue is resolved by adding EVP_CIPHER_CTX_cleanup to the openssl_decrypt function.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: PHP versions prior to 5.3.6
No auth needed
Prerequisites: PHP with OpenSSL extension enabled
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Mailing List vendor-advisory x_refsource_apple
http://lists.apple.com/archives/Security-announce/2011//Oct/msg00003.html
Vendor Advisory x_refsource_confirm
http://www.php.net/ChangeLog-5.php
Vendor Advisory vendor-advisory x_refsource_mandriva
http://www.mandriva.com/security/advisories?name=MDVSA-2011:053
Exploit x_refsource_confirm
http://bugs.php.net/bug.php?id=54060
Vendor Advisory vendor-advisory x_refsource_redhat
http://www.redhat.com/support/errata/RHSA-2011-1423.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/46977
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2011/0744
Vendor Advisory x_refsource_confirm
http://support.apple.com/kb/HT5002
Exploit x_refsource_confirm
http://bugs.php.net/bug.php?id=54061

Scores

EPSS 0.1321
EPSS Percentile 95.9%

Details

CWE
CWE-399
Status published
Products (45)
php/php 1.0
php/php 2.0
php/php 2.0b10
php/php 3.0
php/php 3.0.1
php/php 3.0.2
php/php 3.0.3
php/php 3.0.4
php/php 3.0.5
php/php 3.0.6
... and 35 more
Published Mar 20, 2011
Tracked Since Feb 18, 2026