NULL pointer dereference vulnerability in apache_mod_php in Apple OS X - CVE-2015-6838ID: oval:org.secpod.oval:def:31480 | Date: (C)2015-11-20 (M)2024-02-19 |
Class: VULNERABILITY | Family: macos |
The host is installed with Apple Mac OS X or Server 10.9.5, 10.10.5 or 10.11.x before 10.11.1 and is prone to a NULL pointer dereference vulnerability. A flaw is present in the PHP XSLTProcessor class, which fails to properly handle NULL pointer returned the valuePop() function. Successful exploitation could allow remote attackers to cause PHP to crash.
Platform: |
Apple Mac OS X 10.9 |
Apple Mac OS X Server 10.9 |
Apple Mac OS X 10.10 |
Apple Mac OS X Server 10.10 |
Apple Mac OS X 10.11 |
Apple Mac OS X Server 10.11 |