PT-2016-3380 · Php+2 · Php+2

Nguyenvuhoang199321

Published

2016-09-17

Updated

2018-05-04

CVE-2016-7414

CVSS v2.0

Critical

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.6.26 PHP versions 7.x prior to 7.0.11

Description The issue is related to the ZIP signature-verification feature, which does not ensure that the uncompressed filesize field is large enough. This allows remote attackers to cause a denial of service (out-of-bounds memory access) or possibly have other unspecified impacts via a crafted PHAR archive. The problem is associated with the files ext/phar/util.c and ext/phar/zip.c.

Recommendations For PHP versions prior to 5.6.26, update to version 5.6.26 or later. For PHP versions 7.x prior to 7.0.11, update to version 7.0.11 or later. As a temporary workaround, consider restricting the use of PHAR archives until a patch is applied.

Exploit

Fix

DoS

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

BDU:2022-02411

CVE-2016-7414

DLA-749-1

DSA-3689-1

MGASA-2016-0319

OPENSUSE-SU-2016_2444-1

OPENSUSE-SU-2016_2540-1

RHSA-2018:1296

SUSE-SU-2016:2459-1

SUSE-SU-2016:2460-1

SUSE-SU-2016:2460-2

SUSE-SU-2016:2461-1

SUSE-SU-2016:2477-1

SUSE-SU-2016:2477-2

USN-3095-1

Affected Products

Php

Suse

Ubuntu

PT-2016-3380 · Php+2 · Php+2

CVE-2016-7414

Weakness Enumeration

Related Identifiers

Affected Products

References · 124