CVE-2015-8879

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.6.12

Description The issue is related to the odbc bindcols function in PHP, which mishandles driver behavior for SQL WVARCHAR columns. This can be exploited by remote attackers to cause a denial of service (application crash) under certain circumstances, specifically when using the odbc fetch array function to access a particular type of Microsoft SQL Server table.

Recommendations For PHP versions prior to 5.6.12, update to version 5.6.12 or later to resolve the issue. As a temporary workaround, consider restricting the use of the odbc fetch array function when accessing Microsoft SQL Server tables to minimize the risk of exploitation.