MiracleLinux 7 : rh-php56-php-5.6.5-9.el7 (AXSA:2016-623:03)

🗓️ 16 Jan 2026 00:00:00Reported by TenableType

MiracleLinux 7 PHP Apache module affected by httpoxy vulnerability (CVE-2016-5385) per AXSA:2016-623:03.

Reporter	Title	Published	Views	Family All 157
IBM Security Bulletins	Release of QRadar 7.2.8 Patch 4 (7.2.8.20170224202650) Updated w/Security Bulletins	10 May 201914:29	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in PHP affects PowerKVM (CVE-2016-5385)	18 Jun 201801:33	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem models 840 and 900	18 Feb 202301:45	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in Apache Tomcat affect the IBM FlashSystem model V840	18 Jun 201800:32	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple security issues in IBM Tealeaf Customer Experience on Cloud Network Capture Add-On	16 Jun 201820:06	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities affecting web servers that run code in a CGI or CGI-like context affects IBM API Connect (CVE-2016-5385, CVE-2016-1000105)	15 Jun 201807:06	–	ibm
IBM Security Bulletins	Security Bulletin: IBM QRadar SIEM is vulnerable to various CGI vulnerabilities. (CVE-2016-5385, CVE-2016-5387, CVE-2016-5388)	16 Jun 201821:48	–	ibm
IBM Security Bulletins	Security Bulletin: Multiple vulnerabilities in Apache Tomcat affect SAN Volume Controller, Storwize family and FlashSystem V9000 products	29 Mar 202301:48	–	ibm
Tenable Nessus	PHP 5.5.x < 5.5.38 / 5.6.x < 5.6.24 / 7.0.x < 7.0.9 Multiple Vulnerabilities	5 Aug 201600:00	–	nessus
Tenable Nessus	Amazon Linux AMI : php55 / php56 (ALAS-2016-728) (httpoxy)	2 Aug 201600:00	–	nessus

Source	Link
tsn	www.tsn.miraclelinux.com/en/node/7055
cve	www.cve.mitre.org/cgi-bin/cvename.cgi

#%NASL_MIN_LEVEL 80900
##
# (C) Tenable, Inc.
#
# The package checks in this plugin were extracted from
# Miracle Linux Security Advisory AXSA:2016-623:03.
##

include('deprecated_nasl_level.inc');
include('compat.inc');

if (description)
{
  script_id(289430);
  script_version("1.1");
  script_set_attribute(attribute:"plugin_modification_date", value:"2026/01/16");

  script_cve_id("CVE-2016-5385");
  script_xref(name:"IAVB", value:"2016-B-0160-S");

  script_name(english:"MiracleLinux 7 : rh-php56-php-5.6.5-9.el7 (AXSA:2016-623:03)");

  script_set_attribute(attribute:"synopsis", value:
"The remote MiracleLinux host is missing a security update.");
  script_set_attribute(attribute:"description", value:
"The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the
AXSA:2016-623:03 advisory.

    PHP is an HTML-embedded scripting language. PHP attempts to make it
    easy for developers to write dynamically generated web pages. PHP also
    offers built-in database integration for several commercial and
    non-commercial database management systems, so writing a
    database-enabled webpage with PHP is fairly simple. The most common
    use of PHP coding is probably as a replacement for CGI scripts.
    This package contains the module (often referred to as mod_php)
    which adds support for the PHP language to Apache HTTP 2.4 Server.
    Security issues fixed with this release:
    CVE-2016-5385
    PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18
    namespace conflicts and therefore does not protect applications from
    the presence of untrusted client data in the HTTP_PROXY environment
    variable, which might allow remote attackers to redirect an
    application's outbound HTTP traffic to an arbitrary proxy server via a
    crafted Proxy header in an HTTP request, as demonstrated by (1) an
    application that makes a getenv('HTTP_PROXY') call or (2) a CGI
    configuration of PHP, aka an httpoxy issue.

Tenable has extracted the preceding description block directly from the MiracleLinux security advisory.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version
number.");
  script_set_attribute(attribute:"see_also", value:"https://tsn.miraclelinux.com/en/node/7055");
  script_set_attribute(attribute:"solution", value:
"Update the affected packages.");
  script_set_cvss_base_vector("CVSS2#AV:N/AC:H/Au:N/C:P/I:P/A:P");
  script_set_cvss_temporal_vector("CVSS2#E:U/RL:OF/RC:C");
  script_set_cvss3_base_vector("CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H");
  script_set_cvss3_temporal_vector("CVSS:3.0/E:U/RL:O/RC:C");
  script_set_attribute(attribute:"cvss_score_source", value:"CVE-2016-5385");

  script_set_attribute(attribute:"exploitability_ease", value:"No known exploits are available");
  script_set_attribute(attribute:"exploit_available", value:"false");
  script_set_attribute(attribute:"vendor_severity", value:"Moderate");

  script_set_attribute(attribute:"vuln_publication_date", value:"2016/07/18");
  script_set_attribute(attribute:"patch_publication_date", value:"2016/08/12");
  script_set_attribute(attribute:"plugin_publication_date", value:"2026/01/16");

  script_set_attribute(attribute:"plugin_type", value:"local");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-bcmath");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-cli");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-common");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-dba");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-dbg");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-devel");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-embedded");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-enchant");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-fpm");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-gd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-gmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-intl");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-ldap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-mbstring");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-mysqlnd");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-odbc");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-opcache");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-pdo");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-pgsql");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-process");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-pspell");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-recode");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-snmp");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-soap");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-xml");
  script_set_attribute(attribute:"cpe", value:"p-cpe:/a:miracle:linux:rh-php56-php-xmlrpc");
  script_set_attribute(attribute:"cpe", value:"cpe:/o:miracle:linux:7");
  script_set_attribute(attribute:"generated_plugin", value:"current");
  script_set_attribute(attribute:"stig_severity", value:"I");
  script_end_attributes();

  script_category(ACT_GATHER_INFO);
  script_family(english:"Miracle Linux Local Security Checks");

  script_copyright(english:"This script is Copyright (C) 2026 and is owned by Tenable, Inc. or an Affiliate thereof.");

  script_dependencies("ssh_get_info.nasl");
  script_require_keys("Host/local_checks_enabled", "Host/MiracleLinux/release", "Host/MiracleLinux/rpm-list", "Host/cpu");

  exit(0);
}


include('rpm2.inc');

if (!get_kb_item('Host/local_checks_enabled')) audit(AUDIT_LOCAL_CHECKS_NOT_ENABLED);
var os_product = get_kb_item('installed_os/local/SSH/0/product');
if (isnull(os_product) || 'MIRACLE LINUX' >!< os_product) audit(AUDIT_OS_NOT, 'MIRACLE LINUX');
var os_version = get_kb_item('installed_os/local/SSH/0/version');
if (isnull(os_version)) audit(AUDIT_UNKNOWN_APP_VER, 'MIRACLE LINUX');
if (! preg(pattern:"^7([^0-9]|$)", string:os_version)) audit(AUDIT_OS_NOT, 'MiracleLinux 7.x', 'MIRACLE LINUX ' + os_version);

if (!get_kb_item('Host/MiracleLinux/rpm-list')) audit(AUDIT_PACKAGE_LIST_MISSING);

var cpu = get_kb_item('Host/cpu');
if (isnull(cpu)) audit(AUDIT_UNKNOWN_ARCH);
if ('aarch64' >!< cpu && 'ppc' >!< cpu && 's390' >!< cpu && 'x86_64' >!< cpu && cpu !~ "^i[3-6]86$") audit(AUDIT_LOCAL_CHECKS_NOT_IMPLEMENTED, 'MIRACLE LINUX', cpu);

var constraints = [
  {
    'release': '7',
    'pkgs': [
      {'reference':'rh-php56-php-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-bcmath-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-cli-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-common-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-dba-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-dbg-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-devel-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-embedded-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-enchant-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-fpm-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-gd-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-gmp-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-intl-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-ldap-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-mbstring-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-mysqlnd-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-odbc-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-opcache-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-pdo-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-pgsql-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-process-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-pspell-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-recode-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-snmp-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-soap-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-xml-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'},
      {'reference':'rh-php56-php-xmlrpc-5.6.5-9.el7', 'cpu':'x86_64', 'rpm_spec_vers_cmp':TRUE, 'epoch':'0'}
    ]
  }
];

var os_release = get_one_kb_item('installed_os/local/SSH/0/release');
var os_sp = get_one_kb_item('Host/*/minor_release');

var flag = 0;
var reference;
var sp;
var _cpu;
var el_string;
var rpm_spec_vers_cmp;
var epoch;
var allowmaj;
var exists_check;
var cves;
foreach var constraint ( constraints ) {
  # Check that the target release is equal to the affected release
  if (!empty_or_null(constraint['release'])){
    if (constraint['release'] != os_release) continue;
  }
  if (!empty_or_null(constraint['sp'])){
    if (constraint['sp'] != os_sp) continue;
  }
  foreach var pkg ( constraint['pkgs'] ) {
    reference = NULL;
    sp = NULL;
    _cpu = NULL;
    el_string = NULL;
    rpm_spec_vers_cmp = NULL;
    epoch = NULL;
    allowmaj = NULL;
    exists_check = NULL;
    cves = NULL;
    if (!empty_or_null(pkg['reference'])) reference = pkg['reference'];
    if (!empty_or_null(pkg['sp'])) sp = pkg['sp'];
    if (!empty_or_null(pkg['cpu'])) _cpu = pkg['cpu'];
    if (!empty_or_null(pkg['el_string'])) el_string = pkg['el_string'];
    if (!empty_or_null(pkg['rpm_spec_vers_cmp'])) rpm_spec_vers_cmp = pkg['rpm_spec_vers_cmp'];
    if (!empty_or_null(pkg['epoch'])) epoch = pkg['epoch'];
    if (!empty_or_null(pkg['allowmaj'])) allowmaj = pkg['allowmaj'];
    if (!empty_or_null(pkg['exists_check'])) exists_check = pkg['exists_check'];
    if (!empty_or_null(pkg['cves'])) cves = pkg['cves'];
    if (reference &&
        ## (no known rpm to check OR known rpm_exists)
        (!exists_check || rpm_exists(rpm:exists_check)) &&
        rpm_check(sp:sp, cpu:_cpu, reference:reference, epoch:epoch, el_string:el_string, rpm_spec_vers_cmp:rpm_spec_vers_cmp, allowmaj:allowmaj, cves:cves)) flag++;
  }
}
if (flag)
{
  security_report_v4(
      port       : 0,
      severity   : SECURITY_WARNING,
      extra      : rpm_report_get()
  );
  exit(0);
}
else
{
  var tested = pkg_tests_get();
  if (tested) audit(AUDIT_PACKAGE_NOT_AFFECTED, tested);
  else audit(AUDIT_PACKAGE_NOT_INSTALLED, 'rh-php56-php / rh-php56-php-bcmath / rh-php56-php-cli / etc');
}

16 Jan 2026 00:00Current

7.1High risk

Vulners AI Score7.1

CVSS 25.1

CVSS 3.18.1

EPSS0.83504