Description
scanf.c in PHP 5.1.4 and earlier, and 4.4.3 and earlier, allows context-dependent attackers to execute arbitrary code via a sscanf PHP function call that performs argument swapping, which increments an index past the end of an array and triggers a buffer over-read.
Remediation
References
Related Vulnerabilities
WordPress Plugin Front End Upload 'upload.php' Arbitrary File Upload (0.5.3)
WordPress Plugin Zingiri Web Shop 'uploadfilexd.php' Arbitrary File Upload (2.4.3)
e107 Other Vulnerability (CVE-2010-2098)
WordPress 3.8.x Multiple Vulnerabilities (3.8 - 3.8.16)
Oracle Database Server CVE-2015-2585 Vulnerability (CVE-2015-2585)