Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2016-7412

UNKNOWN
Published 2016-09-17T21:00:00
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2016-7412. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag, which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-m5g2-hw2w-vfvh

Advisory Details

ext/mysqlnd/mysqlnd_wireprotocol.c in PHP before 5.6.26 and 7.x before 7.0.11 does not verify that a BIT field has the UNSIGNED_FLAG flag, which allows remote MySQL servers to cause a denial of service (heap-based buffer overflow) or possibly have unspecified other impact via crafted field metadata.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2016-7412
WEB https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1
WEB https://access.redhat.com/errata/RHSA-2018:1296
WEB https://bugs.php.net/bug.php?id=72293
WEB https://security.gentoo.org/glsa/201611-22
WEB https://www.tenable.com/security/tns-2016-19
WEB http://www.openwall.com/lists/oss-security/2016/09/15/10
WEB http://www.php.net/ChangeLog-5.php
WEB http://www.php.net/ChangeLog-7.php
WEB http://www.securityfocus.com/bid/93005
WEB http://www.securitytracker.com/id/1036836

Advisory provided by GitHub Security Advisory Database. Published: May 14, 2022, Modified: May 14, 2022

References

https://github.com/php/php-src/commit/28f80baf3c53e267c9ce46a2a0fadbb981585132?w=1
http://www.php.net/ChangeLog-7.php
https://security.gentoo.org/glsa/201611-22
http://www.securitytracker.com/id/1036836
https://bugs.php.net/bug.php?id=72293
http://www.openwall.com/lists/oss-security/2016/09/15/10
https://access.redhat.com/errata/RHSA-2018:1296
http://www.php.net/ChangeLog-5.php
https://www.tenable.com/security/tns-2016-19
http://www.securityfocus.com/bid/93005

HackerOne Reports

Heap overflow in mysqlnd related to BIT fields (CVE-2016-7412) Medium
mongo
Internet Bug Bounty
Memory Corruption - Generic
View Report
Published: 2016-09-17T21:00:00
Last Modified: 2024-08-06T01:57:47.622Z
Copied to clipboard!