Description

php_zip.c in the zip extension in PHP before 5.5.37, 5.6.x before 5.6.23, and 7.x before 7.0.8 improperly interacts with the unserialize implementation and garbage collection, which allows remote attackers to execute arbitrary code or cause a denial of service (use-after-free and application crash) via crafted serialized data containing a ZipArchive object.

Remediation

References

CVE-2016-5773

Related Vulnerabilities

MediaWiki Resource Management Errors Vulnerability (CVE-2015-8003)

Oracle Database Server CVE-2006-5334 Vulnerability (CVE-2006-5334)

MySQL Other Vulnerability (CVE-2002-1809)

phpMyAdmin Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2018-12581)

WordPress Plugin myEASYbackup 'dwn_file' Parameter Directory Traversal (1.0.8.1)

Severity

Critical

Classification

CVE-2016-5773 CWE-416 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Tags

Missing Update Known Vulnerabilities