CVE-2016-7480
Publication date 11 January 2017
Last updated 24 July 2024
Ubuntu priority
Cvss 3 Severity Score
The SplObjectStorage unserialize implementation in ext/spl/spl_observer.c in PHP before 7.0.12 does not verify that a key is an object, which allows remote attackers to execute arbitrary code or cause a denial of service (uninitialized memory access) via crafted serialized data.
Status
Package | Ubuntu Release | Status |
---|---|---|
php5 | ||
16.04 LTS xenial | Not in release | |
14.04 LTS trusty |
Not affected
|
|
php7.0 | ||
16.04 LTS xenial |
Not affected
|
|
14.04 LTS trusty | Not in release | |
Notes
Severity score breakdown
Parameter | Value |
---|---|
Base score | 9.8 · Critical |
Attack vector | Network |
Attack complexity | Low |
Privileges required | None |
User interaction | None |
Scope | Unchanged |
Confidentiality | High |
Integrity impact | High |
Availability impact | High |
Vector | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
References
Other references
- http://blog.checkpoint.com/2016/12/27/check-point-discovers-three-zero-day-vulnerabilities-web-programming-language-php-7
- http://blog.checkpoint.com/wp-content/uploads/2016/12/PHP_Technical_Report.pdf
- http://php.net/ChangeLog-7.php
- https://www.youtube.com/watch?v=LDcaPstAuPk
- https://www.cve.org/CVERecord?id=CVE-2016-7480