Description
Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
Remediation
References
Related Vulnerabilities
PHP Improper Input Validation Vulnerability (CVE-2015-4605)
WordPress Plugin Swipe Checkout for Jigoshop Cross-Site Scripting (3.1.0)
CubeCart Improper Authentication Vulnerability (CVE-2014-2341)
Invision Power Board version 3.3.4 unserialize PHP code execution
WordPress Plugin EU Cookie Law for GDPR/CCPA Cross-Site Scripting (3.1.6)