10
CVSSv2

CVE-2015-4599

Published: 16/05/2016 Updated: 05/01/2018
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9
VMScore: 891
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Summary

The SoapFault::__toString method in ext/soap/soap.c in PHP prior to 5.4.40, 5.5.x prior to 5.5.24, and 5.6.x prior to 5.6.8 allows remote malicious users to obtain sensitive information, cause a denial of service (application crash), or possibly execute arbitrary code via an unexpected data type, related to a "type confusion" issue.

Vulnerable Product Search on Vulmon Subscribe to Product

php php

php php 5.5.0

php php 5.5.1

php php 5.5.2

php php 5.5.3

php php 5.5.4

php php 5.5.5

php php 5.5.6

php php 5.5.7

php php 5.5.8

php php 5.5.9

php php 5.5.10

php php 5.5.11

php php 5.5.12

php php 5.5.13

php php 5.5.14

php php 5.5.15

php php 5.5.16

php php 5.5.17

php php 5.5.18

php php 5.5.19

php php 5.5.20

php php 5.5.21

php php 5.5.22

php php 5.5.23

php php 5.6.0

php php 5.6.1

php php 5.6.2

php php 5.6.3

php php 5.6.4

php php 5.6.5

php php 5.6.6

php php 5.6.7

redhat enterprise linux desktop 7.0

redhat enterprise linux hpc node 7.0

redhat enterprise linux hpc node eus 7.1

redhat enterprise linux server 7.0

redhat enterprise linux server eus 7.1

redhat enterprise linux workstation 7.0

Vendor Advisories

Multiple flaws were discovered in the way PHP's Soap extension performed object unserialization Specially crafted input processed by the unserialize() function could cause a PHP application to disclose portion of its memory or crash ...
Several security issues were fixed in PHP ...
Oracle Linux Bulletin - January 2016 Description The Oracle Linux Bulletin lists all CVEs that had been resolved and announced in Oracle Linux Security Advisories (ELSA) in the last one month prior to the release of the bulletin Oracle Linux Bulletins are published on the same day as Oracle Critical Patch Updates are relea ...

Github Repositories

phpcodz Php Codz Hacking (www80vulcom/pch/) What is PHP? PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML If you are new to PHP and want to get some idea of how it works, try the introductory tutorial After that, check out the online manual, and the example archive sites and some of t

Php Codz Hacking

phpcodz Php Codz Hacking (www80vulcom/pch/) What is PHP? PHP is a widely-used general-purpose scripting language that is especially suited for Web development and can be embedded into HTML If you are new to PHP and want to get some idea of how it works, try the introductory tutorial After that, check out the online manual, and the example archive sites and some of t