Description

Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.

Remediation

References

CVE-2011-1092

Related Vulnerabilities

WordPress Plugin Subscriptions & Memberships for PayPal Cross-Site Scripting (1.1.2)

Joomla Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-7859)

Dolibarr Incorrect Authorization Vulnerability (CVE-2020-12669)

WordPress Plugin PowerPack Lite for Beaver Builder Cross-Site Scripting (1.3.0)

MediaWiki Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2013-2031)

Severity

High

Classification

CVE-2011-1092

Tags

Missing Update Known Vulnerabilities