CVE-2016-4070

Advisory lineage Upstream: 0 Downstream: 9

Downstream

DLA-499-1 DSA-3560-1 RHSA-2016:2750 SUSE-SU-2016:1277-1 SUSE-SU-2016:1310-1 SUSE-SU-2016:1581-1

Modified

Published: 20 May 2016, 10:00

Last modified:14 Nov 2024, 19:50

Vulnerability Summary

Overall Risk (default)

medium

41/100

CVSS Score

7.5 HIGH

v3.0 (nvd)

EPSS Score

6.47% LOW

6% probability 0.00%

KEV

Not listed

Ransomware

No reports

Public exploits

1 found

Dark Web

Not detected

Timeline

20 May 2016, 10:00

Published

Vulnerability first disclosed

14 Nov 2024, 19:50

Last Modified

Vulnerability information updated

Description

Integer overflow in the php_raw_url_encode function in ext/standard/url.c in PHP before 5.5.34, 5.6.x before 5.6.20, and 7.x before 7.0.5 allows remote attackers to cause a denial of service (application crash) via a long string to the rawurlencode function. NOTE: the vendor says "Not sure if this qualifies as security issue (probably not).

CVSS Metrics

v3.0•HIGH•Score: 7.5CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
v2.0•MEDIUM•Score: 5AV:N/AC:L/Au:N/C:N/I:N/A:P

EPSS Trends

Current EPSS score: 6.47%• Percentile: 91%

Techniques & Countermeasures

CWE-189•Numeric Errors
Weaknesses in this category are related to improper calculation or conversion of numbers.

Affected Systems

Unknown•PHP
≤ 5.5.33 | 5.6.0:alpha1 | 5.6.0:alpha2 | 5.6.0:alpha3 | 5.6.0:alpha4 | 5.6.0:alpha5 | 5.6.0:beta1 | 5.6.0:beta2 | 5.6.0:beta3 | 5.6.0:beta4 | 5.6.1 | 5.6.2 | 5.6.3 | 5.6.4 | 5.6.5 | 5.6.6 | 5.6.7 | 5.6.8 | 5.6.9 | 5.6.10 | 5.6.11 | 5.6.12 | 5.6.13 | 5.6.14 | 5.6.15 | 5.6.16 | 5.6.17 | 5.6.18 | 5.6.19 | 7.0.0 | 7.0.1 | 7.0.2 | 7.0.3 | 7.0.4