CVE-2015-7804 — Untrusted Pointer Dereference in Apple MAC OS X

CWE-189 CWE-822 — Untrusted Pointer Dereference8 documents7 sources

Severity

6.8MEDIUMNVD

EPSS

11.4%

top 6.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Php5 Apple MAC OS X PHP +1 more

Timeline

PublishedDec 11

Latest updateMay 17

Description

Off-by-one error in the phar_parse_zipfile function in ext/phar/zip.c in PHP before 5.5.30 and 5.6.x before 5.6.14 allows remote attackers to cause a denial of service (uninitialized pointer dereference and application crash) by including the / filename in a .zip PHAR archive.

CVSS vector

AV:N/AC:M/C:P/I:P/A:PExploitability: 8.6 | Impact: 6.4

Affected Packages4 packages

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.14

▶NVDphp/php5.5.29+14

▶NVDapple/mac_os_x10.11.1

▶Appleapple/os_x_el_capitan_10.11.2_security_update_2015-005_yosemite_and_security_update_20

🔴Vulnerability Details

GHSA

GHSA-w62r-v45f-552v: Off-by-one error in the phar_parse_zipfile function in ext/phar/zip↗2022-05-17

▶

OSV

php5 vulnerabilities↗2015-10-28

▶

OSV

CVE-2015-7804: Off-by-one error in the phar_parse_zipfile function in ext/phar/zip↗2015-10-12

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2015-10-28

▶

Red Hat

php: uninitialized pointer in phar_make_dirstream()↗2015-10-01

▶

Apple

CVE-2015-7804: OS X El Capitan 10.11.2, Security Update 2015-005 Yosemite, and Security Update 2015-008 Mavericks↗

▶

💬Community

Bugzilla

CVE-2015-7804 php: uninitialized pointer in phar_make_dirstream()↗2015-10-13

▶