Integer Overflow in fread Function in PHP Allows Remote Attackers to Cause Denial of Service or Other Impact

Integer Overflow in fread Function in PHP Allows Remote Attackers to Cause Denial of Service or Other Impact

CVE-2016-5096 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Integer overflow in the fread function in ext/standard/file.c in PHP before 5.5.36 and 5.6.x before 5.6.22 allows remote attackers to cause a denial of service or possibly have unspecified other impact via a large integer in the second argument.

Learn more about our Web Application Penetration Testing UK.