VDB
CVE-2016-7398
CVE-2016-7398
PUBLISHED
A type confusion vulnerability in the merge_param() function of php_http_params.c in PHP's pecl-http extension 3.1.0beta2 (PHP 7) and earlier as well as 2.6.0beta2 (PHP 5) and earlier allows attackers to crash PHP and possibly execute arbitrary code via crafted HTTP requests.
EPSS 5.72% · 90.6th percentile
Risk Scores
EPSS Score
5.72%
90.6th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ubuntu:16.04:LTS | php-pecl-http | 0, 3.0.1-0ubuntu2, 3.0.1-0ubuntu4 |
Exploit Intelligence
- https://bugs.php.net/bug.php?id=73055 (nist-nvd)
- https://bugs.php.net/bug.php?id=73055&edit=1 (nist-nvd)
- Heap overflow caused by type confusion vulnerability in merge_param() (hackerone)
- Heap overflow caused by type confusion vulnerability in merge_param() (hackerone)
- Heap overflow caused by type confusion vulnerability in merge_param() (hackerone)
- https://github.com/m6w6/ext-http/commit/17137d4ab1ce81a2cee0fae842340a344ef3da83 (circl)
- [debian-lts-announce] 20190920 [SECURITY] [DLA 1929-1] php-pecl-http security update (circl)
Timeline
- CVE Published
- May 30, 2017 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 17, 2025 EPSS Score
- Mar 19, 2025 EPSS Score
- Mar 23, 2025 EPSS Score
- Mar 24, 2025 EPSS Score
- Mar 29, 2025 EPSS Score
- Mar 30, 2025 EPSS Score
- Apr 2, 2025 EPSS Score
- Apr 11, 2025 EPSS Score
References
- https://ubuntu.com/security/CVE-2016-7398 third-party-advisory
- https://bugs.php.net/bug.php?id=73055 third-party-advisory
- https://bugs.php.net/bug.php?id=73055&edit=1 third-party-advisory
- https://github.com/m6w6/ext-http/commit/17137d4ab1ce81a2cee0fae842340a344ef3da83 third-party-advisory
- https://www.cve.org/CVERecord?id=CVE-2016-7398 third-party-advisory