PHP contains a NULL Pointer Dereference vulnerability when handling calls to the grapheme_extract() function. Successful exploitation yields a denial of service condition.
Denial of Service
Denial of service condition, causing the system to become unresponsive or crashing the vulnerable components. This vulnerability may potentially allow for the compromise of the target system.
BeyondTrust Prevention and Detection:
- BeyondTrust's Retina® Network Security Scanner scans devices to detect for this vulnerability.
A fix has been included in the source repository but has not been applied to the stable release yet.