Description
Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.
Remediation
References
Related Vulnerabilities
WordPress Plugin WooCommerce SQL Injection (5.5.0)
phpMyAdmin Cross-Site Request Forgery (CSRF) Vulnerability (CVE-2017-1000499)
WordPress Plugin Far Future Expiry Header Cross-Site Request Forgery (1.4)
WordPress Plugin Download Plugin Security Bypass (1.6.0)
Liferay DXP Incorrect Default Permissions Vulnerability (CVE-2022-42128)