PHP 5.6.x < 5.6.19 Denial of Service
Critical Nessus Network Monitor Plugin ID 9175
SynopsisThe remote web server uses a version of PHP that is affected by a Denial of Service (DoS) vulnerability.
DescriptionVersions of PHP 5.6.x prior to 5.6.19 are vulnerable to a NULL pointer dereference flaw in the 'xsl_ext_function_php()' function in 'ext/xsl/xsltprocessor.c'. This may potentially allow a remote attacker to cause a crash.
SolutionUpgrade to PHP version 5.6.19 or later.