CVE-2015-2301 — Use After Free in PHP

CWE-416 — Use After Free9 documents9 sources

Severity

7.5HIGHNVD

EPSS

11.2%

top 6.48%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

PHP Php5 Apple MAC OS X +9 more

Timeline

PublishedMar 30

Latest updateMay 13

Description

Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages8 packages

▶NVDphp/php5.4.0 — 5.4.40+2

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.7

▶NVDapple/mac_os_x10.10.4

▶NVDopensuse/opensuse13.1, 13.2+1

▶NVDredhat/enterprise_linux_server7.0

Also affects: Debian Linux 7.0, Ubuntu Linux 10.04, 12.04, 14.04, 14.10, Enterprise Linux 7.1

🔴Vulnerability Details

GHSA

GHSA-q362-2hc9-hr5r: Use-after-free vulnerability in the phar_rename_archive function in phar_object↗2022-05-13

▶

CVEList

CVE-2015-2301: Use-after-free vulnerability in the phar_rename_archive function in phar_object↗2015-03-30

▶

OSV

CVE-2015-2301: Use-after-free vulnerability in the phar_rename_archive function in phar_object↗2015-03-16

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2015-03-18

▶

Red Hat

php: use after free in phar_object.c↗2015-01-24

▶

Apple

CVE-2015-2301: OS X El Capitan v10.11↗

▶

💬Community

HackerOne

PHP 5.4.45 is Outdated and Full of Preformance Interupting Arbitrary Code Execution Bugs↗2017-08-21

▶

Bugzilla

CVE-2015-2301 php: use after free in phar_object.c↗2015-02-20

▶