|
|
|||
Release Date:2016/08/11
Attack Name:WEB PHP ZipArchive getFromIndex and getFromName Integer Overflow (CVE-2016-3078)
Severity:
BUG ID:
CVE ID:
| Description:
|
An integer overflow vulnerability exists in PHP. The vulnerability is due to an error in reading zip files with the getFromIndex() and getFromName() of ZipArchiver, causing a heap buffer overflow.
Impact:Remote code execution
Affected System:Windows, Linux, FreeBSD, Other Unix
Additional References:CVE-2016-3078
| Solution:
|
Update vendor's patch.