CVE-2016-10160
🟠 Łataj w tym tygodniu
Błąd off-by-one w funkcji phar_parse_pharfile w PHP umożliwia zdalne wykonanie kodu.
CVSS
9.8
EPSS
4.7%
Exploit
none
Vendor
php
Opis źródłowy (NVD)
Off-by-one error in the phar_parse_pharfile function in ext/phar/phar.c in PHP before 5.6.30 and 7.0.x before 7.0.15 allows remote attackers to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted PHAR archive with an alias mismatch.
dos
Brak patcha
Źródła i daty
| Źródło | Wartość |
|---|---|
| NVD – CVSS | 9.8 |
| CISA KEV (aktywnie wykorzystywane) | Nie |
| FIRST EPSS (prawdopodobieństwo exploita) | 4.7% |
| Opublikowano (NVD) | 2017-01-24 21:59:00 UTC |
| Ostatnia modyfikacja (NVD) | 2026-05-13 00:24:29 UTC |
Referencje
- http://php.net/ChangeLog-5.php (cve@mitre.org) [Release Notes, Vendor Advisory]
- http://php.net/ChangeLog-7.php (cve@mitre.org) [Release Notes, Vendor Advisory]
- http://www.debian.org/security/2017/dsa-3783 (cve@mitre.org) [Third Party Advisory]
- http://www.securityfocus.com/bid/95783 (cve@mitre.org) [Third Party Advisory, VDB Entry]
- http://www.securitytracker.com/id/1037659 (cve@mitre.org) [Broken Link, Third Party Advisory, VDB Entry]
- https://access.redhat.com/errata/RHSA-2018:1296 (cve@mitre.org) [Third Party Advisory]
- https://bugs.php.net/bug.php?id=73768 (cve@mitre.org) [Issue Tracking, Patch, Vendor Advisory]
- https://github.com/php/php-src/commit/b28b8b2fee6dfa6fcd13305c581bb835689ac3be (cve@mitre.org) [Issue Tracking, Patch, Third Party Advisory]
- https://security.gentoo.org/glsa/201702-29 (cve@mitre.org) [Third Party Advisory]
- https://security.netapp.com/advisory/ntap-20180112-0001/ (cve@mitre.org) [Third Party Advisory]
- https://www.tenable.com/security/tns-2017-04 (cve@mitre.org) [Third Party Advisory]