CVE-2016-5385

high HPE
CVSS v3 Base Score
8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
81.3%
Exploitation probability in 30 days
Top 1% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
High
Privileges Required
None
User Interaction
None
Confidentiality
High
Integrity
High
Availability
High
Published: July 19, 2016 (3587 days ago)
Last Modified: May 6, 2026
Vendor: HPE
Source: NVD

Description

PHP through 7.0.8 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect applications from the presence of untrusted client data in the HTTP_PROXY environment variable, which might allow remote attackers to redirect an application's outbound HTTP traffic to an arbitrary proxy server via a crafted Proxy header in an HTTP request, as demonstrated by (1) an application that makes a getenv('HTTP_PROXY') call or (2) a CGI configuration of PHP, aka an "httpoxy" issue.

CWE

CWE-601

Affected Products

oracle communications user data repositoryoracle enterprise manager ops centeroracle linuxfedoraproject fedorahp storeever msl6480 tape library firmwarehp system management homepagephp phpredhat enterprise linux desktopredhat enterprise linux serverredhat enterprise linux workstation

References

🔗 lists.opensuse.org 🔗 rhn.redhat.com 🔗 rhn.redhat.com 🔗 rhn.redhat.com 🔗 rhn.redhat.com