virus logo FortiClient Vulnerability

PHP CVE-2018-19395 Denial of Service Vulnerability

description-logoDescription

ext/standard/var.c in PHP 5.x through 7.1.24 on Windows allows attackers to cause a denial of service (NULL pointer dereference and application crash) because com and com_safearray_proxy return NULL in com_properties_get in ext/com_dotnet/com_handlers.c, as demonstrated by a serialize call on COM(\"WScript.Shell\").

affected-products-logoAffected Applications

PHP

CVE References

CVE-2018-19395

Other References

https://nvd.nist.gov/vuln/detail/CVE-2018-19395
ID 61991
Created Jan 09, 2020
Description
Updated		 Dec 19, 2023
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor PHP
Patch manual
Application PHP