Description
Function iconv_mime_decode_headers() in PHP versions 7.1.x below 7.1.30, 7.2.x below 7.2.19 and 7.3.x below 7.3.6 may perform out-of-buffer read due to integer overflow when parsing MIME headers. This may lead to information disclosure or crash.
Remediation
References
Related Vulnerabilities
Ruby Improper Authentication Vulnerability (CVE-2019-16201)
WordPress Plugin KittyCatfish Ads by Missilesilo SQL Injection (2.2)
WordPress Plugin Donation Thermometer Cross-Site Scripting (2.1.2)
WordPress Plugin WP PRO Advertising System-All In One Ad Manager SQL Injection (4.6.18)
IBM WebSEAL Use of a Broken or Risky Cryptographic Algorithm Vulnerability (CVE-2019-4156)