PHP 5.6.x < 5.6.3 donote DoS
Medium Web Application Scanning Plugin ID 98820
SynopsisPHP 5.6.x < 5.6.3 donote DoS
DescriptionAccording to its banner, the version of PHP 5.6.x installed on the remote host is prior to 5.6.3. It is, therefore, affected by an out-of-bounds read error in the function 'donote' within the file 'ext/fileinfo/libmagic/readelf.c' that could allow application crashes.
Note that the scanner has not attempted to exploit these issues but has instead relied only on the application's self-reported version number.
SolutionUpgrade to PHP version 5.6.3 or later.