CVE-2015-5590

high-risk
Published 2016-01-19

Stack-based buffer overflow in the phar_fix_filepath function in ext/phar/phar.c in PHP before 5.4.43, 5.5.x before 5.5.27, and 5.6.x before 5.6.11 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large length value, as demonstrated by mishandling of an e-mail attachment by the imap PHP extension.

Do I need to act?

~
6.4% chance of exploitation in next 30 days
EPSS score — moderate exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.3/10 High
NETWORK / LOW complexity

Affected Products (20)

Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php
Php

Affected Vendors

Php

References (12)

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=6dedeb40db13971af45276f80b53750...
http://openwall.com/lists/oss-security/2015/07/18/1
http://www.debian.org/security/2015/dsa-3344
Vendor Advisory http://www.php.net/ChangeLog-5.php
http://www.securityfocus.com/bid/75970
Exploit https://bugs.php.net/bug.php?id=69923
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=6dedeb40db13971af45276f80b53750...
http://openwall.com/lists/oss-security/2015/07/18/1
http://www.debian.org/security/2015/dsa-3344
Vendor Advisory http://www.php.net/ChangeLog-5.php
http://www.securityfocus.com/bid/75970
Exploit https://bugs.php.net/bug.php?id=69923
61
/ 100
high-risk
Severity 26/34 · High
Exploitability 9/34 · Low
Exposure 26/34 · High