CVE-2013-6501

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.6.7

Description The issue exists due to the failure to neutralize special elements in the get sdl function of the PHP interpreter. Exploitation of this issue may allow an attacker to disclose protected information, impact data integrity, or cause a denial of service. The default configuration of the soap.wsdl cache dir setting in PHP's configuration files specifies the /tmp directory, which facilitates local users' ability to conduct WSDL injection attacks by creating a file under /tmp with a predictable filename that is used by the get sdl function.

Recommendations For PHP versions prior to 5.6.7, consider updating the soap.wsdl cache dir setting to a directory that is not accessible by local users to minimize the risk of WSDL injection attacks. As a temporary workaround, consider restricting access to the get sdl function in ext/soap/php sdl.c until a patch is available.