CVE-2016-7131 — HIGH (7.5) — White Hats Nepal

Q: How severe is CVE-2016-7131?

CVE-2016-7131 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2016-7131?

Check the references section above for vendor advisories and patch information. Affected products include: Php Php.

Vulnerability Description

ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other impact via a malformed wddxPacket XML document that is mishandled in a wddx_deserialize call, as demonstrated by a tag that lacks a < (less than) character.

CVSS Score

7.5

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

NONE

Integrity

NONE

Availability

HIGH

Affected Products

Vendor	Product	Versions
Php	Php	7.0.0

Related Weaknesses (CWE)

CWE-476

References

http://openwall.com/lists/oss-security/2016/09/02/9Mailing List
http://rhn.redhat.com/errata/RHSA-2016-2750.htmlThird Party Advisory
http://www.php.net/ChangeLog-5.phpRelease Notes
http://www.php.net/ChangeLog-7.phpRelease Notes
http://www.securityfocus.com/bid/92768Third Party AdvisoryVDB Entry
http://www.securitytracker.com/id/1036680Third Party AdvisoryVDB Entry
https://bugs.php.net/bug.php?id=72790ExploitIssue Tracking
https://github.com/php/php-src/commit/0c8a2a2cd1056b7dc403eacb5d2c0eec6ce47c6fPatchVendor Advisory
https://github.com/php/php-src/commit/a14fdb9746262549bbbb96abb87338bacd147e1b?wIssue TrackingPatch
https://security.gentoo.org/glsa/201611-22Third Party Advisory
https://www.tenable.com/security/tns-2016-19Third Party Advisory
http://openwall.com/lists/oss-security/2016/09/02/9Mailing List
http://rhn.redhat.com/errata/RHSA-2016-2750.htmlThird Party Advisory
http://www.php.net/ChangeLog-5.phpRelease Notes
http://www.php.net/ChangeLog-7.phpRelease Notes

FAQ

What is CVE-2016-7131?

CVE-2016-7131 is a vulnerability with a CVSS score of 7.5 (HIGH). ext/wddx/wddx.c in PHP before 5.6.25 and 7.x before 7.0.10 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) or possibly have unspecified other impa...

How severe is CVE-2016-7131?

CVE-2016-7131 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-7131?

Check the references section above for vendor advisories and patch information. Affected products include: Php Php.