Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2017-16642 — Out-of-bounds Read in PHP

CWE-125 — Out-of-bounds Read9 documents7 sources

Severity

7.5HIGHNVD

OSV9.8

EPSS

8.3%

top 7.76%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

PHP Php5 Canonical Ubuntu Linux +1 more

Timeline

PublishedNov 7

Latest updateMay 14

Description

In PHP before 5.6.32, 7.x before 7.0.25, and 7.1.x before 7.1.11, an error in the date extension's timelib_meridian handling of 'front of' and 'back of' directives could be used by attackers able to supply date strings to leak information from the interpreter, related to ext/date/lib/parse_date.c out-of-bounds reads affecting the php_parse_date function. NOTE: this is a different issue than CVE-2017-11145.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:NExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

▶NVDphp/php7.0.0 — 7.0.25+2

▶Ubuntuphp5/php5< 5.5.9+dfsg-1ubuntu4.23

Also affects: Debian Linux 8.0, 9.0, Ubuntu Linux 14.04

Patches

Patch: github.com ↗Patch: github.com ↗Patch: github.com ↗

🔴Vulnerability Details

GHSA

GHSA-3r8x-r93p-fr32: In PHP before 5↗2022-05-14

▶

OSV

php5 vulnerabilities↗2018-02-12

▶

OSV

CVE-2017-16642: In PHP before 5↗2017-11-07

▶

💥Exploits & PoCs

Exploit-DB

PHP 7.1.8 - Heap Buffer Overflow↗2017-11-09

▶

📋Vendor Advisories

Ubuntu

PHP vulnerabilities↗2018-02-12

▶

Red Hat

php: Out-of-bound read in timelib_meridian()↗2017-11-07

▶

💬Community

Bugzilla

CVE-2017-16642 php: Out-of-bound read in timelib_meridian() [fedora-all]↗2017-11-10

▶

Bugzilla

CVE-2017-16642 php: Out-of-bound read in timelib_meridian()↗2017-11-10

▶