Description
Use-after-free vulnerability in the phar_rename_archive function in phar_object.c in PHP before 5.5.22 and 5.6.x before 5.6.6 allows remote attackers to cause a denial of service or possibly have unspecified other impact via vectors that trigger an attempted renaming of a Phar archive to the name of an existing file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Google Captcha (reCAPTCHA) by BestWebSoft Cross-Site Scripting (1.05)
WordPress Plugin Polldaddy Polls & Ratings Unspecified Vulnerability (2.0.25)
WordPress Plugin 1-click Retweet/Share/Like Cross-Site Scripting (5.2)
Drupal CVE-2017-6919 Vulnerability (CVE-2017-6919)
WordPress Plugin Google Forms Server-Side Request Forgery (0.91)