PHP ZipArchive::getArchiveComment() NULL Pointer Dereference Denial Of Service Vulnerability
Schweregrad:: Mittel
Hinweisdatum: 31 Mai 2016
Beschreibung
The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ZIP archive.
Trend Micro Lösungen
Apply associated Trend Micro DPI Rules.
Lösungen
Trend Micro Deep Security DPI Rule Number: 1005434