Lucene search
Ubuntu.comUB:CVE-2015-7803HistoryOct 12, 2015 - 12:00 a.m.
CVE-2015-7803
2015-10-1200:00:00
ubuntu.com
ubuntu.com
8
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.066 Low
EPSS
Percentile
93.7%
The phar_get_entry_data function in ext/phar/util.c in PHP before 5.5.30
and 5.6.x before 5.6.14 allows remote attackers to cause a denial of
service (NULL pointer dereference and application crash) via a .phar file
with a crafted TAR archive entry in which the Link indicator references a
file that does not exist.
Bugs
Related
prion
prion
Null pointer dereference
2015-12-11 12:00:00
hackerone
hackerone
Internet Bug Bounty: Null pointer dereference in phar_get_fp_offset()
2015-05-28 00:00:00
cve
cve
CVE-2015-7803
2015-12-11 12:00:00
nessus
nessus
Ubuntu 14.04 LTS : PHP vulnerabilities (USN-2786-1)
2015-10-29 00:00:00
SUSE SLES12 Security Update : php5 (SUSE-SU-2016:0284-1)
2019-01-02 00:00:00
openvas
openvas
SUSE: Security Advisory (SUSE-SU-2016:0284-1)
2021-06-09 00:00:00
PHP Multiple Denial of Service Vulnerabilities - 01 (Dec 2015) - Linux
2015-12-15 00:00:00
Ubuntu: Security Advisory (USN-2786-1)
2015-10-29 00:00:00
securityvulns
securityvulns
PHP security vulnerabilities
2015-11-02 00:00:00
[USN-2786-1] PHP vulnerabilities
2015-11-02 00:00:00
f5
f5
SOL17503 - PHP vulnerabilities CVE-2015-7803 and CVE-2015-7804
2015-10-29 00:00:00
K17503 : PHP vulnerabilities CVE-2015-7803 and CVE-2015-7804
2015-10-29 00:00:00
freebsd
freebsd
php -- multiple vulnerabilities
2015-10-01 00:00:00
osv
osv
php5 - security update
2015-10-27 00:00:00
php5 - security update
2015-11-08 00:00:00
debian
debian
[SECURITY] [DSA 3380-1] php5 security update
2015-10-27 18:43:43
[SECURITY] [DLA 341-1] php5 security update
2015-11-08 18:51:20
ubuntu
ubuntu
PHP vulnerabilities
2015-10-28 00:00:00
slackware
slackware
[slackware-security] php
2016-02-04 00:07:13
amazon
amazon
Medium: php55
2015-10-20 14:52:00
Medium: php56
2015-10-20 14:50:00
suse
suse
Security update for php53 (important)
2016-04-25 19:08:08
Security update for php53 (important)
2016-06-14 20:07:58
Security update for php53 (important)
2016-06-21 13:08:17
veracode
veracode
Denial Of Service (DoS)
2019-05-02 05:27:42
Denial Of Service (DoS)
2019-05-02 05:27:43
Denial Of Service (DoS)
2019-05-02 05:27:43
redhat
redhat
(RHSA-2016:0457) Moderate: rh-php56-php security update
2016-03-15 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2016-06-19 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1950
2021-07-02 17:57:45
6.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
0.066 Low
EPSS
Percentile
93.7%
Related for UB:CVE-2015-7803