Security Advisory

CVE-2015-4602

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2016-05-16 10:00:00

Last updated 2024-08-06 06:18:12

Assigner redhat

State PUBLISHED

Description

The __PHP_Incomplete_Class function in ext/standard/incomplete_class.c in PHP before 5.4.40, 5.5.x before 5.5.24, and 5.6.x before 5.6.8 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an unexpected data type, related to a "type confusion" issue.

← Browse all CVEs View on cve.org ↗