Lucene search
K

74 matches found

Prion
Prion
added 2016/05/16 10:59 a.m.31 views

Type confusion

The SoapClient implementation in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in the 1...

10CVSS9.8AI score0.10724EPSS
Exploits5References9Affected Software7
Prion
Prion
added 2016/05/16 10:59 a.m.32 views

Type confusion

The makehttpsoaprequest function in ext/soap/phphttp.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not properly retrieve keys, which allows remote attackers to cause a denial of service NULL pointer dereference, type confusion, and application crash or possibly execute...

7.5CVSS8.5AI score0.06195EPSS
Exploits1References10Affected Software1
CVE
CVE
added 2016/05/16 10:0 a.m.361 views

CVE-2015-4600

CVE-2015-4600 affects PHP SoapClient: vulnerable in PHP versions prior to 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8. Root cause is a type confusion in SoapClient methods (getLastRequest/Response, getLastRequestHeaders/ResponseHeaders, getCookies, setCookie). Impact per the description: ...

10CVSS9.1AI score0.10724EPSS
Exploits5References9Affected Software6
Cvelist
Cvelist
added 2016/05/16 10:0 a.m.32 views

CVE-2015-4600

The SoapClient implementation in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in the 1...

9.2AI score0.10724EPSS
Exploits5References9
Debian CVE
Debian CVE
added 2016/05/16 10:0 a.m.45 views

CVE-2016-3185

Removed by vendor...

7.1CVSS8.1AI score0.03146EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2016/04/29 12:0 a.m.59 views

openSUSE Security Update : php5 (openSUSE-2016-517)

This update for php5 fixes the following security issues : - CVE-2015-8838: mysqlnd was vulnerable to BACKRONYM bnc973792. - CVE-2015-8835: SoapClient scall method suffered from a type confusion issue that could have lead to crashes bsc973351 - CVE-2016-2554: A NULL pointer dereference in...

10CVSS7.2AI score0.35438EPSS
Exploits3References14
OpenVAS
OpenVAS
added 2016/03/01 12:0 a.m.45 views

PHP < 5.4.45, 5.5.x < 5.5.29, 5.6.x < 5.6.13 RCE Vulnerability (Mar 2016) - Windows

PHP is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if descripti...

7.5CVSS8.9AI score0.09798EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/03/01 12:0 a.m.113 views

PHP < 5.4.45, 5.5.x < 5.5.29, 5.6.x < 5.6.13 RCE Vulnerability (Mar 2016) - Linux

PHP is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:php:php"; if descripti...

7.5CVSS8.9AI score0.09798EPSS
Exploits0References3
NVD
NVD
added 2016/01/19 5:59 a.m.28 views

CVE-2015-6836

The SoapClient call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the serializefunctioncall...

7.5CVSS8.8AI score0.09798EPSS
Exploits0References6
Prion
Prion
added 2016/01/19 5:59 a.m.32 views

Type confusion

The SoapClient call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the serializefunctioncall...

7.5CVSS8AI score0.09798EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2016/01/19 2:0 a.m.34 views

CVE-2015-6836

The SoapClient call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the serializefunctioncall...

8.6AI score0.09798EPSS
Exploits0References6
CVE
CVE
added 2016/01/19 2:0 a.m.299 views

CVE-2015-6836

CVE-2015-6836 affects PHP by the SoapClient::__call path in ext/soap/soap.c. The headers handling is insufficiently validated, allowing a crafted serialized payload to trigger a type confusion in serialize_function_call, enabling remote code execution. Affected PHP versions are pre-5.4.45, pre-5....

7.5CVSS8.5AI score0.09798EPSS
Exploits0References6Affected Software1
Kaspersky
Kaspersky
added 2016/01/19 12:0 a.m.275 views

KLA10746 Multiple vulnerabilities in PHP

Multiple serious vulnerabilities have been found in PHP. Malicious users can exploit these vulnerabilities to cause denial of service, affect arbitrary files, execute arbitrary code or obtain sensitive information. Below is a complete list of vulnerabilities 1. Multiple integer overflows can be...

10CVSS10AI score0.23871EPSS
Exploits7References2
Packet Storm
Packet Storm
added 2015/09/24 12:0 a.m.42 views

SMF (Simple Machine Forum) 2.0.10 Remote Memory Exfiltration

!/usr/bin/python -- coding: iso-8859-15 -- Title: SMF Simple Machine Forum Filippo Roncari Truel Lab http://lab.truel.it Requirements: SMF = 2.0.10 PHP = 5.6.11 / 5.5.27 / 5.4.43 Advisories: TL-2015-PHP04 http://lab.truel.it/d/advisories/TL-2015-PHP04.txt TL-2015-PHP06...

0.4AI score
Exploits0
UbuntuCve
UbuntuCve
added 2015/09/09 12:0 a.m.28 views

CVE-2015-6836

The SoapClient call method in ext/soap/soap.c in PHP before 5.4.45, 5.5.x before 5.5.29, and 5.6.x before 5.6.13 does not properly manage headers, which allows remote attackers to execute arbitrary code via crafted serialized data that triggers a "type confusion" in the serializefunctioncall...

7.5CVSS7.5AI score0.09798EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2015/08/18 12:0 a.m.42 views

FreeBSD : php5 -- multiple vulnerabilities (787ef75e-44da-11e5-93ad-002590263bf5)

The PHP project reports : Core : - Fixed bug 69793 Remotely triggerable stack exhaustion via recursive method calls. - Fixed bug 70121 unserialize could lead to unexpected methods execution / NULL pointer deref. OpenSSL : - Fixed bug 70014 opensslrandompseudobytes is not cryptographically secure...

7.5CVSS8.3AI score0.07057EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2015/06/23 8:11 a.m.3 views

php: SoapClient's do_soap_call() type confusion after unserialize()

A flaws was discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrary code...

5CVSS7.4AI score0.19426EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2015/06/23 12:0 a.m.43 views

CVE-2015-4600

The SoapClient implementation in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to "type confusion" issues in the 1...

10CVSS7.2AI score0.10724EPSS
Exploits5References4
Tenable Nessus
Tenable Nessus
added 2015/06/15 12:0 a.m.36 views

openSUSE Security Update : php5 (openSUSE-2015-419)

PHP was updated to fix one security issue. The following vulnerability was fixed : - CVE-2015-4148: A type confusion flay in SoapClient could lead to information disclosure bnc933227 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

5CVSS6.8AI score0.19426EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2015/06/10 12:0 a.m.64 views

SUSE SLES11 Security Update : php53 (SUSE-SU-2015:1018-1)

PHP 5.3 was updated to fix multiple security issues : bnc931776: pcntlexec does not check path validity CVE-2015-4026 bnc931772: overflow in ftpgenlist resulting in heap overflow CVE-2015-4022 bnc931769: memory corruption in pharparsetarfile when entry filename starts with NULL CVE-2015-4021...

7.5CVSS7.4AI score0.50129EPSS
Exploits15References36
Rows per page
Query Builder