Description
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.
Remediation
References
Related Vulnerabilities
WordPress Plugin OSD Subscribe Cross-Site Scripting (1.2.3)
Atlassian Jira Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2020-36231)
XWikiplatform Incorrect Authorization Vulnerability (CVE-2025-29924)
WordPress Plugin WPJobBoard Cross-Site Scripting (5.6.4)
WebLogic Allocation of Resources Without Limits or Throttling Vulnerability (CVE-2018-10237)