Description

Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.

Remediation

References

CVE-2011-1092

Related Vulnerabilities

MySQL CVE-2018-2576 Vulnerability (CVE-2018-2576)

Ruby on Rails Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2024-26143)

WordPress Plugin HTML5 AV Manager for WordPress 'custom.php' Arbitrary File Upload (0.2.7)

WordPress Plugin Nelio AB Testing Directory Traversal (4.4.4)

ownCloud Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2014-2044)

Severity

High

Classification

CVE-2011-1092

Tags

Missing Update Known Vulnerabilities