Lucene search

[email protected]CVE-2016-3141

HistoryMar 31, 2016 - 4:59 p.m.

CVE-2016-3141

2016-03-3116:59:00

CWE-119

[email protected]

web.nvd.nist.gov

121

cve

2016

3141

use-after-free

vulnerability

wddx

php

denial of service

memory corruption

application crash

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

Low

0.058 Low

EPSS

Percentile

93.4%

JSON

Use-after-free vulnerability in wddx.c in the WDDX extension in PHP before 5.5.33 and 5.6.x before 5.6.19 allows remote attackers to cause a denial of service (memory corruption and application crash) or possibly have unspecified other impact by triggering a wddx_deserialize call on XML data containing a crafted var element.

Affected configurations

NVD

Node

applemac_os_xRange≤10.11.4

Node

phpphpRange≤5.5.32

phpphpMatch5.6.0

phpphpMatch5.6.1

phpphpMatch5.6.2

phpphpMatch5.6.3

phpphpMatch5.6.4

phpphpMatch5.6.5

phpphpMatch5.6.6

phpphpMatch5.6.7

phpphpMatch5.6.8

phpphpMatch5.6.9

phpphpMatch5.6.10

phpphpMatch5.6.11

phpphpMatch5.6.12

phpphpMatch5.6.13

phpphpMatch5.6.14

phpphpMatch5.6.15

phpphpMatch5.6.16

phpphpMatch5.6.17

phpphpMatch5.6.18

CPENameOperatorVersion
apple:mac_os_xapple mac os xle10.11.4

CPE	Name	Operator	Version
apple:mac_os_x	apple mac os x	le	10.11.4

References

git.php.net/?p=php-src.git%3Ba=commit%3Bh=b1bd4119bcafab6f9a8f84d92cd65eec3afeface

lists.apple.com/archives/security-announce/2016/May/msg00004.html

lists.opensuse.org/opensuse-security-announce/2016-04/msg00052.html

lists.opensuse.org/opensuse-security-announce/2016-04/msg00056.html

lists.opensuse.org/opensuse-security-announce/2016-04/msg00057.html

lists.opensuse.org/opensuse-security-announce/2016-04/msg00058.html

rhn.redhat.com/errata/RHSA-2016-2750.html

www.oracle.com/technetwork/topics/security/bulletinoct2016-3090566.html

www.securityfocus.com/bid/84271

www.securitytracker.com/id/1035255

www.ubuntu.com/usn/USN-2952-1

www.ubuntu.com/usn/USN-2952-2

bugs.php.net/bug.php?id=71587

php.net/ChangeLog-5.php

support.apple.com/HT206567

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

7.9 High

AI Score

Confidence

Low

0.058 Low

EPSS

Percentile

93.4%

JSON

Related for CVE-2016-3141

prion1 ubuntucve1 cvelist1 nvd1 nessus23 openvas16 f52 suse6 ubuntu2 debian1 osv1 ibm1 apple2 veracode57 redhat1 rosalinux1