Description

Heap-based buffer overflow in the php_quot_print_encode function in ext/standard/quot_print.c in PHP before 5.3.26 and 5.4.x before 5.4.16 allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted argument to the quoted_printable_encode function.

Remediation

References

CVE-2013-2110

Related Vulnerabilities

Zenphoto Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2012-4519)

OpenSSL Permissions, Privileges, and Access Controls Vulnerability (CVE-2010-1633)

Oracle JRE CVE-2018-2797 Vulnerability (CVE-2018-2797)

Drupal Core 9.0.x Information Disclosure (9.0.0 - 9.0.5)

e107 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2009-3444)

Severity

Medium

Classification

CVE-2013-2110 CWE-119

Tags

Missing Update Known Vulnerabilities