CVE-2016-6288
EUVD-2016-721825.07.2016, 14:59
The php_url_parse_ex function in ext/standard/url.c in PHP before 5.5.38 allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via vectors involving the smart_str data type.Enginsight
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| php | php | 𝑥 ≤ 5.5.37 |
𝑥
= Vulnerable software versions
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| hhvm |
| ||||||||||||||||||||||||||||||||||||
| php5 |
| ||||||||||||||||||||||||||||||||||||
| php7.0 |
|
Common Weakness Enumeration
References