CVE-2016-6289Integer Overflow or Wraparound in PHP

CWE-190Integer Overflow or Wraparound13 documents8 sources
Severity
7.8HIGHNVD
OSV9.8
EPSS
2.3%
top 15.18%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Php5PHPApple Macos Sierra
Timeline
PublishedJul 25
Latest updateMay 14

Description

Integer overflow in the virtual_file_ex function in TSRM/tsrm_virtual_cwd.c in PHP before 5.5.38, 5.6.x before 5.6.24, and 7.x before 7.0.9 allows remote attackers to cause a denial of service (stack-based buffer overflow) or possibly have unspecified other impact via a crafted extract operation on a ZIP archive.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages3 packages

Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.19
NVDphp/php5.5.37+31
Appleapple/macos_sierra10.12

🔴Vulnerability Details

3
GHSA
GHSA-5r2j-74cf-87hv: Integer overflow in the virtual_file_ex function in TSRM/tsrm_virtual_cwd2022-05-14
OSV
php5, php7.0 vulnerabilities2016-08-02
OSV
CVE-2016-6289: Integer overflow in the virtual_file_ex function in TSRM/tsrm_virtual_cwd2016-07-25

📋Vendor Advisories

3
Apple
CVE-2016-6289: macOS Sierra 10.122016-09-20
Ubuntu
PHP vulnerabilities2016-08-02
Red Hat
php: Integer overflow leads to buffer overflow in virtual_file_ex2016-06-29

🕵️Threat Intelligence

4
Fortinet
GandCrab V3 Accidentally Locks Systems with New ‘Change Wallpaper’ Feature2018-05-04
Fortinet
Dr. StrangePatch or: How I Learned to Stop Worrying (about Meltdown and Spectre) and Love Security Advisory ADV1800022018-01-12
Fortinet
Joomla – From Nowhere to High Privilege2016-10-27
Fortinet
Analysis of PHP&#39;s CVE-2016-6289 and CVE-2016-62972016-08-10

💬Community

2
Bugzilla
CVE-2016-6289 php: Integer overflow leads to buffer overflow in virtual_file_ex2016-07-25
Bugzilla
CVE-2016-6289 CVE-2016-6290 CVE-2016-6291 CVE-2016-6292 CVE-2016-6294 CVE-2016-6295 CVE-2016-6296 CVE-2016-6297 php: various flaws [fedora-all]2016-07-25
CVE-2016-6289 — Integer Overflow or Wraparound in PHP | cvebase