Description

Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.

Remediation

References

CVE-2011-1092

Related Vulnerabilities

WordPress Plugin White Label CMS Cross-Site Scripting (1.5.2)

Dolibarr Other Vulnerability (CVE-2022-0746)

WordPress Plugin Citizen Space Cross-Site Scripting (1.1)

Phusion Passenger Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') Vulnerability (CVE-2018-12029)

Apache Tomcat Configuration Vulnerability (CVE-2008-0128)

Severity

High

Classification

CVE-2011-1092

Tags

Missing Update Known Vulnerabilities