Description

scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a buffer over-read.

Remediation

References

CVE-2006-4020

Related Vulnerabilities

WordPress Plugin Smush Image Compression and Optimization Multiple Vulnerabilities (2.9.1)

Joomla CVE-2012-0835 Vulnerability (CVE-2012-0835)

Roundcube Resource Management Errors Vulnerability (CVE-2011-4078)

Joomla CVE-2012-2748 Vulnerability (CVE-2012-2748)

Drupal Core 7.x Cross-Site Scripting (7.0 - 7.64)

Severity

Medium

Classification

CVE-2006-4020

Tags

Missing Update Known Vulnerabilities