PHP 7.1.x < 7.1.6 Multiple Vulnerabilities

critical Web App Scanning Plugin ID 98863

Language:

Synopsis

Description

According to its banner, the version of PHP running on the remote web server is 7.1.x prior to 7.1.6. It is, therefore, affected by the following vulnerabilities :

- A flaw exists in _zend_hash_add_or_update_i within file main/php_ini.c when handling a malformed php.ini file. An attacker can exploit this to cause a segmentation fault, resulting in a denial of service condition or possibly the execution of arbitrary code. (bug #74600)

- An illegal instruction error exists in the function ZEND_FETCH_CLASS_CONSTANT_SPEC_CONST_CONST_HANDLER() when processing specially crafted input. An attacker can exploit this to cause a denial of service condition or possibly the execution of arbitrary code. (bug #74546)

- A flaw exists that is related to processing of directory paths that contain Unicode characters. An attacker can exploit this to cause an incorrect value in the '__DIR__' variable, possibly resulting in a denial of service condition or the execution of arbitrary code. (bug #74589)

Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number.