Published: 25/07/2016 Updated: 07/11/2023

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Integer signedness error in the simplestring_addn function in simplestring.c in xmlrpc-epi up to and including 0.54.2, as used in PHP prior to 5.5.38, 5.6.x prior to 5.6.24, and 7.x prior to 7.0.9, allows remote malicious users to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a long first argument to the PHP xmlrpc_encode_request function.

Vulnerable Product	Search on Vulmon	Subscribe to Product
php php 5.6.1
php php 5.6.0
php php 5.6.5
php php 7.0.4
php php 5.6.12
php php 5.6.13
php php 5.6.4
php php 7.0.3
php php 5.6.6
php php 7.0.1
php php 5.6.18
php php 5.6.11
php php 5.6.2
php php 5.6.10
php php
php php 5.6.7
php php 5.6.21
php php 5.6.15
php php 5.6.20
php php 7.0.2
php php 5.6.17
php php 5.6.16
php php 5.6.23
php php 7.0.8
php php 5.6.9
php php 7.0.5
php php 5.6.3
php php 7.0.0
php php 5.6.8
php php 5.6.22
php php 5.6.14
php php 5.6.19

Synopsis Moderate: rh-php56 security, bug fix, and enhancement update Type/Severity Security Advisory: Moderate Topic An update for rh-php56, rh-php56-php, and rh-php56-php-pear is now available for Red Hat Software CollectionsRed Hat Product Security has rated this update as having a security impact of Mo ...

Debian Bug report logs - #832959 xmlrpc-epi: CVE-2016-6296: Heap buffer overflow vulnerability in simplestring_addn in simplestringc Package: src:xmlrpc-epi; Maintainer for src:xmlrpc-epi is Robin Cornelius <robincornelius@gmailcom>; Reported by: Salvatore Bonaccorso <carnil@debianorg> Date: Sat, 30 Jul 2016 04:42 ...

xmlrpc-epi could be made to crash or run programs if it processed specially crafted data ...

Several security issues were fixed in PHP ...

Integer signedness error in the simplestring_addn function in simplestringc in xmlrpc-epi through 0542, as used in PHP before 5538, 56x before 5624, and 7x before 709, allows remote attackers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via a long first argument to the PHP xmlrpc_en ...

CWE-119 http://openwall.com/lists/oss-security/2016/07/24/2 http://php.net/ChangeLog-7.php http://php.net/ChangeLog-5.php https://bugs.php.net/72606 http://www.securityfocus.com/bid/92095 https://support.apple.com/HT207170 http://lists.apple.com/archives/security-announce/2016/Sep/msg00006.html http://www.ubuntu.com/usn/USN-3059-1 https://security.gentoo.org/glsa/201611-22 http://www.securitytracker.com/id/1036430 http://www.debian.org/security/2016/dsa-3631 http://rhn.redhat.com/errata/RHSA-2016-2750.html https://lists.debian.org/debian-lts-announce/2019/11/msg00029.html http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=e6c48213c22ed50b2b987b479fcc1ac709394caa https://access.redhat.com/errata/RHSA-2016:2750 https://nvd.nist.gov https://usn.ubuntu.com/3059-1/

CVE-2016-6296

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect