CVE-2015-4605

Sažetak

The mcopy function in softmagic.c in file 5.x, as used in the Fileinfo component in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8, does not properly restrict a certain offset value, which allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted string that is mishandled by a "Python script text executable" rule.

Reference

http://php.net/ChangeLog-5.php
http://www.openwall.com/lists/oss-security/2015/06/16/12
https://bugs.php.net/bug.php?id=68819
http://www.securityfocus.com/bid/75233
http://rhn.redhat.com/errata/RHSA-2015-1187.html
http://rhn.redhat.com/errata/RHSA-2015-1135.html
http://www.oracle.com/technetwork/topics/security/linuxbulletinjan2016-2867209.html
http://rhn.redhat.com/errata/RHSA-2015-1186.html
http://www.securitytracker.com/id/1032709
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=f938112c495b0d26572435c0be73ac0bfe642ecd

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Zadnje važnije ažuriranje

07-11-2023 - 02:25

Objavljeno

16-05-2016 - 10:59