Description
Integer overflow in the ftp_genlist function in ext/ftp/ftp.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote FTP servers to execute arbitrary code via a long reply to a LIST command, leading to a heap-based buffer overflow.
Remediation
References
Related Vulnerabilities
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-0701)
Squid Improper Handling of Exceptional Conditions Vulnerability (CVE-2023-5824)
Joomla! Core 3.x.x Information Disclosure (3.0.0 - 3.8.7)
WordPress Plugin Copify Cross-Site Request Forgery (1.3.0)
Apache HTTP Server CVE-1999-0070 Vulnerability (CVE-1999-0070)