Description
PHP 4.x and 5.x before 5.2.1, when running on multi-threaded systems, does not ensure thread safety for libc crypt function calls using protection schemes such as a mutex, which creates race conditions that allow remote attackers to overwrite internal program memory and gain system access.
Remediation
References
Related Vulnerabilities
WordPress Plugin Import any XML or CSV File to WordPress Multiple Vulnerabilities (3.2.4)
Squid Improper Input Validation Vulnerability (CVE-2019-12520)
WebLogic CVE-2022-21350 Vulnerability (CVE-2022-21350)
WordPress Plugin rtMedia for WordPress, BuddyPress and bbPress Cross-Site Scripting (3.7.38)