Description
The xmlrpc extension in PHP 5.3.1 does not properly handle a missing methodName element in the first argument to the xmlrpc_decode_request function, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) and possibly have unspecified other impact via a crafted argument.
Remediation
References
Related Vulnerabilities
Drupal Other Vulnerability (CVE-2006-2832)
WordPress Plugin KBoard Multiple Vulnerabilities (3.3)
WordPress Plugin VideoWhisper Video Presentation Arbitrary File Upload (3.31.17)
Python Unchecked Return Value Vulnerability (CVE-2021-4189)
WordPress Plugin Adsense Extreme 'adsensextreme[lang]' Parameter Remote File Include (1.0.3)