Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
632
VMScore

CVE-2015-8878

Published: 22/05/2016 Updated: 14/02/2019
CVSS v2 Base Score: 7.1 | Impact Score: 6.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 632
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:C

Vulnerability Summary

main/php_open_temporary_file.c in PHP prior to 5.5.28 and 5.6.x prior to 5.6.12 does not ensure thread safety, which allows remote malicious users to cause a denial of service (race condition and heap memory corruption) by leveraging an application that performs many temporary-file accesses.

Vulnerable Product Search on Vulmon Subscribe to Product

php php

Vendor Advisories

Red Hat: CVE-2015-8878
main/php_open_temporary_filec in PHP before 5528 and 56x before 5612 does not ensure thread safety, which allows remote attackers to cause a denial of service (race condition and heap memory corruption) by leveraging an application that performs many temporary-file accesses ...

References

CWE-119CWE-362https://bugs.php.net/bug.php?id=70002http://www.php.net/ChangeLog-5.phphttps://nvd.nist.govhttps://access.redhat.com/security/cve/cve-2015-8878
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073CVE-2024-5496CVE-2024-5495XPath injectionbypassCVE-2024-30043CVE-2024-24919denial of serviceCVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook