CVE-2016-5773 in macOSالمعلومات

الملخص

بحسب MITRE

php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) via crafted serialized data containing a ZipArchive object.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

23/06/2016

إفشاء

07/08/2016

الاعتدال

تمت الموافقة

إدخال

2

ربط

عرض

استغلال

تحميل

EPSS

0.16127

KEV

لا

النشاطات

منخفض جدًا

القطاع

Lawfirm, Agriculture, ...

المصادر

MITREhttps://www.cve.org/CVERecord?id=CVE-2016-5773
NVDhttps://nvd.nist.gov/vuln/detail/CVE-2016-5773
CVE Detailshttps://www.cvedetails.com/cve/CVE-2016-5773/

التالي نظرة عامة السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!