CVE-2012-2386

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.3.14 PHP versions 5.4.x prior to 5.4.4

Description The issue is related to errors in number processing in the PHP language interpreter extension. It may allow a remote attacker to execute arbitrary code or cause a denial of service using a specially crafted tar archive. The problem is caused by an integer overflow in the phar parse tarfile function, which can trigger a heap-based buffer overflow.

Recommendations For PHP versions prior to 5.3.14, update to version 5.3.14 or later. For PHP versions 5.4.x prior to 5.4.4, update to version 5.4.4 or later. As a temporary workaround, consider restricting the use of the phar parse tarfile function in the phar extension until a patch is available. Avoid using specially crafted tar files that could trigger the integer overflow in the phar parse tarfile function.