Description

The chunk_split function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information (memory contents) by causing a userspace interruption of an internal function, related to the call time pass by reference feature.

Remediation

References

CVE-2010-1862

Related Vulnerabilities

WordPress Plugin Live Product Editor for WooCommerce Security Bypass (4.6.2)

MySQL CVE-2022-21287 Vulnerability (CVE-2022-21287)

Drupal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3479)

WordPress Plugin LifterLMS-WP LMS for eLearning, Online Courses, & Quizzes Security Bypass (4.21.1)

Moodle Permissions, Privileges, and Access Controls Vulnerability (CVE-2014-0125)

Severity

Medium

Classification

CVE-2010-1862 CWE-200

Tags

Missing Update Known Vulnerabilities