CVE-2016-5385

Common vulnerabilities & exposures (CVE)

CVE database CVE database blogpost Release & EoL database

Published at: - 19-07-2016 04:00

Last modified: - 29-08-2022 10:10

Total changes: - 3

Description

PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an "httpoxy" issue.

Common Vulnerability Scoring System (CVSS)

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

High

Attack complexity

Network

Attack vector

High

Availability

High

Confidentiality

High

Integrity

None

Privileges required

Unchanged

Scope

None

User interaction

8.1

Base score

2.2

5.9

Exploitability score

Impact score

Verification logic

Reference

https://bugzilla.redhat.com/show_bug.cgi?id=1353794
VU#797896-Third Party Advisory, US Government Resource
https://httpoxy.org/
FEDORA-2016-8eb11666aa-Third Party Advisory
FEDORA-2016-4e7db3d437-Third Party Advisory
FEDORA-2016-9c8cf5912c-Third Party Advisory
http://www.oracle.com/technetwork/topics/security/linuxbulletinjul2016-3090544.html
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05320149
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05333297
openSUSE-SU-2016:1922-Third Party Advisory
91821-Third Party Advisory, VDB Entry
RHSA-2016:1611-Broken Link, Third Party Advisory
RHSA-2016:1612-Broken Link, Third Party Advisory
RHSA-2016:1613-Broken Link, Third Party Advisory
RHSA-2016:1610-Broken Link, Third Party Advisory
RHSA-2016:1609-Broken Link, Third Party Advisory
https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05390722
https://www.drupal.org/SA-CORE-2016-003
https://github.com/guzzle/guzzle/releases/tag/6.2.1
GLSA-201611-22-Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html
https://h20566.www2.hpe.com/hpsc/doc/public/display?docLocale=en_US&docId=emr_na-hpesbhf03770en_us
1036335-Third Party Advisory, VDB Entry
DSA-3631-Third Party Advisory
http://www.oracle.com/technetwork/security-advisory/cpujan2018-3236628.html

Keywords

CVE-2016-5385

Common vulnerabilities & exposures (CVE)

Description

Common Vulnerability Scoring System (CVSS)

Verification logic

Reference

NVD

CVE-2016-5385

CVE

Common vulnerabilities & exposures

CVSS

Common vulnerability scoring system

Security

Vulnerabilities

Exposures