Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2014-3515

The SPL component in PHP before 5.4.30 and 5.5.x before 5.5.14 incorrectly anticipates that certain data structures will have the array data type after unserialization, which allows remote attackers to execute arbitrary code via a crafted string that triggers use of a Hashtable destructor, related to "type confusion" issues in (1) ArrayObject and (2) SPLObjectStorage.

Published

2014-07-09T11:07:01.883

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	php	php	< 5.3.29	Yes
Application	php	php	< 5.4.30	Yes
Application	php	php	< 5.5.14	Yes
Operating System	debian	debian_linux	7.0	Yes
Operating System	debian	debian_linux	8.0	Yes

References

http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=88223c5245e9b470e1e6362bfd96829562ffe6ab ([email protected])
http://lists.opensuse.org/opensuse-updates/2014-09/msg00046.html Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=141017844705317&w=2 Mailing List, Third Party Advisory ([email protected])
http://marc.info/?l=bugtraq&m=141017844705317&w=2 Mailing List, Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2014-1765.html Third Party Advisory ([email protected])
http://rhn.redhat.com/errata/RHSA-2014-1766.html Third Party Advisory ([email protected])
http://secunia.com/advisories/59794 Third Party Advisory ([email protected])
http://secunia.com/advisories/59831 Third Party Advisory ([email protected])
http://secunia.com/advisories/60998 Third Party Advisory ([email protected])
http://support.apple.com/kb/HT6443 Third Party Advisory ([email protected])
http://www-01.ibm.com/support/docview.wss?uid=swg21683486 Third Party Advisory ([email protected])
http://www.debian.org/security/2014/dsa-2974 Third Party Advisory ([email protected])
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html Third Party Advisory ([email protected])
http://www.php.net/ChangeLog-5.php Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/68237 Third Party Advisory, VDB Entry ([email protected])
https://bugs.php.net/bug.php?id=67492 Patch, Vendor Advisory ([email protected])
http://git.php.net/?p=php-src.git%3Ba=commit%3Bh=88223c5245e9b470e1e6362bfd96829562ffe6ab (af854a3a-2127-422b-91ae-364da2661108)
http://lists.opensuse.org/opensuse-updates/2014-09/msg00046.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=141017844705317&w=2 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://marc.info/?l=bugtraq&m=141017844705317&w=2 Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-1765.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://rhn.redhat.com/errata/RHSA-2014-1766.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59794 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/59831 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://secunia.com/advisories/60998 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.apple.com/kb/HT6443 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www-01.ibm.com/support/docview.wss?uid=swg21683486 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.debian.org/security/2014/dsa-2974 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.php.net/ChangeLog-5.php Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/68237 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://bugs.php.net/bug.php?id=67492 Patch, Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)