PT-2015-3432 · Php+3 · Php+3

Andrea Palazzo

·

Publicado

2015-06-09

·

Atualizado

2018-01-05

·

CVE-2015-4147

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.4.39 PHP versions 5.5.x prior to 5.5.23 PHP versions 5.6.x prior to 5.6.7
Description The issue is related to a "type confusion" problem in the SoapClient:: call method, which does not properly verify the data type of default headers, allowing remote attackers to execute arbitrary code by providing crafted serialized data. This is a result of an error in data processing.
Recommendations For PHP versions prior to 5.4.39, update to version 5.4.39 or later. For PHP versions 5.5.x prior to 5.5.23, update to version 5.5.23 or later. For PHP versions 5.6.x prior to 5.6.7, update to version 5.6.7 or later.

Exploit

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-19

Identificadores relacionados

BDU:2022-02535
CESA-2015_1135
CESA-2015_1218
CVE-2015-4147
DLA-307-1
RHSA-2015:1053
RHSA-2015:1066
RHSA-2015:1135
RHSA-2015:1218
RHSA-2015_1135
RHSA-2015_1218
USN-2658-1

Produtos afetados

Centos
Php
Red Hat
Ubuntu