Description

Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.

Remediation

References

CVE-2012-2329

Related Vulnerabilities

WordPress Plugin Simple File List Multiple Vulnerabilities (3.2.4)

WordPress 5.3.x Multiple Vulnerabilities (5.3 - 5.3.12)

Moodle Improper Input Validation Vulnerability (CVE-2014-9060)

WordPress Plugin NextGEN Gallery-WordPress Gallery Security Bypass (3.1.6)

Liferay Portal Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2021-33339)

Severity

Medium

Classification

CVE-2012-2329 CWE-119

Tags

Missing Update Known Vulnerabilities