PHP TAR File Parsing Uninitialized Reference Vulnerability (CVE-2016-4343)

  Severity: MEDIUM

  DESCRIPTION

An uninitialized reference vulnerability has been found in PHP. A remote attacker can exploit this vulnerability by sending a crafted file to a service that processes tar files. A successful attack could result in arbitrary code execution on the vulnerable server.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1007739