Description

Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.

Remediation

References

CVE-2012-2376

Related Vulnerabilities

WordPress 4.1.x Directory Traversal (4.1 - 4.1.40)

WordPress 3.7.x Cross-Site Request Forgery (3.7 - 3.7.28)

WordPress Plugin WP Mailto Links-Manage Email Links Cross-Site Scripting (2.0.1)

MySQL CVE-2019-2800 Vulnerability (CVE-2019-2800)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2013-1832)

Severity

Critical

Classification

CVE-2012-2376 CWE-119

Tags

Missing Update Known Vulnerabilities