The host is installed with PHP and is prone to Denial of Service vulnerability. The flaw is present in substr_replace() function, which makes the PHP to use the same pointer in three variables inside the function so when the pointer is changed by a type conversion inside the function, it invalids the other variables. Successful exploitation could allow remote attackers to cause a denial of service by using the same variable for multiple arguments.