Lucene search

K

LibnexH1:104027

HistoryApr 15, 2015 - 12:00 a.m.

Internet Bug Bounty: Memory Corruption in phar_parse_tarfile when entry filename starts with null

2015-04-1500:00:00

libnex

hackerone.com

$500

35

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.74 High

EPSS

Percentile

97.7%

https://bugs.php.net/bug.php?id=69453

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.74 High

EPSS

Percentile

97.7%