virus logo FortiClient Vulnerability

PHP CVE-2017-7963 Denial of Service Vulnerability

description-logoDescription

** DISPUTED ** The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long strings. NOTE: the vendor disputes this, stating \"There is no security issue here, because GMP safely aborts in case of an OOM condition. The only attack vector here is denial of service. However, if you allow attacker-controlled, unbounded allocations you have a DoS vector regardless of GMP\'s OOM behavior.\"

affected-products-logoAffected Applications

PHP

CVE References

CVE-2017-7963

Other References

https://nvd.nist.gov/vuln/detail/CVE-2017-7963
ID 61985
Created Jan 09, 2020
Description
Updated		 Apr 16, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor PHP
Patch manual
Application PHP