Description
PHP before 5.1.3-RC1 might allow remote attackers to obtain portions of memory via crafted binary data sent to a script that processes user input in the html_entity_decode function and sends the encoded results back to the client, aka a "binary safety" issue. NOTE: this issue has been referred to as a "memory leak," but it is an information leak that discloses memory contents.
Remediation
References
Related Vulnerabilities
Oracle Database Server Other Vulnerability (CVE-2005-3206)
Oracle Database Server Other Vulnerability (CVE-2006-5343)
Oracle Database Server CVE-2018-3259 Vulnerability (CVE-2018-3259)
WordPress Plugin RokMicroNews Multiple Vulnerabilities (1.5)
WordPress Plugin 10Web Map Builder for Google Maps Cross-Site Scripting (1.0.71)