CVE-2015-3329 in PHPinfo

Zusammenfassung

von MITRE

Multiple stack-based buffer overflows in the phar_set_inode function in phar_internal.h in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allow remote attackers to execute arbitrary code via a crafted length value in a (1) tar, (2) phar, or (3) ZIP archive.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

Reservieren

17.04.2015

Veröffentlichung

09.06.2015

Moderieren

akzeptiert

Eintrag

VDB-75809

CPE

bereit

EPSS

0.38434

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!