9 matches found
SUSE CVE-2015-4602
The PHPIncompleteClass function in ext/standard/incompleteclass.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to a "type confusion"...
The vulnerability of the PHP interpreter allows attackers to trigger a service failure or execute arbitrary code.
The vulnerability of the PHPIncompleteClass function ext/standard/incompleteclass.c in the PHP interpreter is related to errors in data type mixing. Exploiting this vulnerability can allow an attacker to cause service failures or execute arbitrary code terminate the application using unexpected...
CVE-2015-4602
The PHPIncompleteClass function in ext/standard/incompleteclass.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to a "type confusion"...
php: Incomplete Class unserialization type confusion
A flaw was discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrary code...
php: Incomplete Class unserialization type confusion
A flaw was discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrary code...
php: Incomplete Class unserialization type confusion
A flaw was discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrary code...
UBUNTU-CVE-2015-4602
The PHPIncompleteClass function in ext/standard/incompleteclass.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via an unexpected data type, related to a "type confusion"...
PHP 'incomplete_class.c' memory corruption vulnerability
PHP is a general-purpose scripting language. A type obfuscation vulnerability in PHP 'incompleteclass.c' handling deserialization of incomplete classes allows remote attackers to exploit the vulnerability by submitting a special request to obtain memory information or crash a PHP application...
php: Incomplete Class unserialization type confusion
A flaw was discovered in the way PHP performed object unserialization. Specially crafted input processed by the unserialize function could cause a PHP application to crash or, possibly, execute arbitrary code...