CVE-2015-6831

Multiple use-after-free vulnerabilities in SPL in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 allow remote attackers to execute arbitrary code via vectors involving (1) ArrayObject, (2) SplObjectStorage, and (3) SplDoublyLinkedList, which are mishandled during unserialization.

Published: Jan 19, 2016
Updated: Nov 8, 2023
CVE: CVE-2015-6831
Severity: High
Exploit:

CVSS v3:

Severity: High
Score: 7.3
AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

CWEs:

CWE-416

Affected Software
References

Software	From	Fixed in
php / php	5.5.0	5.5.28
php / php	5.6.0	5.6.12
php / php	-	5.4.44
debian / debian_linux	8.0	8.0.x
debian / debian_linux	7.0	7.0.x

http://www.debian.org/security/2015/dsa-3344
http://www.openwall.com/lists/oss-security/2015/08/19/3
http://www.php.net/ChangeLog-5.php
http://www.securityfocus.com/bid/76737
https://bugs.php.net/bug.php?id=70155
https://bugs.php.net/bug.php?id=70166
https://bugs.php.net/bug.php?id=70168
https://bugs.php.net/bug.php?id=70169
https://security.gentoo.org/glsa/201606-10

Vulnerability Database

290,273

CVE-2015-6831