Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2016-8267

Malware in sbrugna...

9.8CVSS8.5AI score0.06842EPSS
Exploits1References16
RedHat Linux
RedHat Linux
added 2023/10/19 1:33 p.m.21 views

php: phar Buffer mismanagement

A flaw was found in PHP that can lead to a buffer overflow and a stack information leak due to improper bounds checking within the phardirread function. This issue may allow an attacker to initiate memory corruption by compelling the application to open a specially crafted .phar archive, allowing...

9.8CVSS7.5AI score0.08003EPSS
Exploits3References7
Veracode
Veracode
added 2019/05/16 2:59 a.m.38 views

Denial Of Service (DoS) Through Memory Corruption

PHP is vulnerable to denial of service DoS attacks. The vulnerability exists in the ZIP signature-verification feature in PHP. Remote attackers could cause a denial of service or possibly have unspecified other impact via a crafted PHAR archive, related to ext/phar/util.c and ext/phar/zip.c...

9.8CVSS9.4AI score0.06842EPSS
Exploits1References12Affected Software1
CNVD
CNVD
added 2017/02/16 12:0 a.m.5 views

PHP buffer overflow vulnerability (CNVD-2017-01945)

PHP PHP: Hypertext Preprocessor is an open source general-purpose computer scripting language maintained by the PHP Group and the open source community. The language supports multiple syntaxes, multiple databases and operating systems, and support for C, C++ for program extensions and so on. A...

9.8CVSS9.1AI score0.07322EPSS
Exploits0References1
NVD
NVD
added 2017/01/24 9:59 p.m.24 views

CVE-2016-10160

Off-by-one error in the pharparsepharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch...

9.8CVSS9.8AI score0.07322EPSS
Exploits0References11
Prion
Prion
added 2017/01/24 9:59 p.m.24 views

Memory corruption

Off-by-one error in the pharparsepharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch...

7.5CVSS8.4AI score0.07322EPSS
Exploits0References11Affected Software2
UbuntuCve
UbuntuCve
added 2017/01/24 12:0 a.m.34 views

CVE-2016-10160

Off-by-one error in the pharparsepharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service memory corruption or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch...

9.8CVSS7.1AI score0.07322EPSS
Exploits0References5
Rows per page
Query Builder