Vulnerabilities

CVE-2015-2301

by Fred · 30/03/2015

Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.

Date published : 2015-03-30

http://lists.apple.com/archives/security-announce/2015/Sep/msg00008.html

http://www.securityfocus.com/bid/73037

Similar

Tags: Cybersecurity Alert