KLA10929
Denial of service vulnerability in PHP
Обновлено: 17/06/2019
Дата обнаружения
04/01/2017
Уровень угрозы
Critical
Описание

An improper unserialize implementation in ext/standard/var.c was found in PHP 7.x before 7.0.14. By exploiting this vulnerability malicious users can cause a denial of service. Other unspecified impacts are also possible. This vulnerability can be exploited remotely via specially designed serialized data.


Technical details

This vulnerability is a consequence of an incomplete fix for CVE-2015-6834.

Пораженные продукты

PHP 7.x before 7.0.14

Решение

Update to the latest version
Download PHP

Первичный источник обнаружения
PHP 7 ChangeLog
Оказываемое влияние
?
DoS 
[?]
Связанные продукты
PHP
CVE-IDS
CVE-2016-99367.5Critical