CVE-2015-3411

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.4.40 PHP versions 5.5.x prior to 5.5.24 PHP versions 5.6.x prior to 5.6.8

Description The issue is related to the lack of checking for %00 sequences in pathnames, which could allow remote attackers to read or write to arbitrary files via crafted input to an application that calls certain functions, such as the DOMDocument load method, the xmlwriter open uri function, the finfo file function, or the hash hmac file function. This could be exploited by providing specially crafted input, such as a filename0.xml attack, to bypass intended configurations.

Recommendations For PHP versions prior to 5.4.40, update to version 5.4.40 or later. For PHP versions 5.5.x prior to 5.5.24, update to version 5.5.24 or later. For PHP versions 5.6.x prior to 5.6.8, update to version 5.6.8 or later. As a temporary workaround, consider restricting the use of the DOMDocument load method, the xmlwriter open uri function, the finfo file function, and the hash hmac file function until a patch is applied.