Description
The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's __sleep function to interrupt an internal call to the shm_put_var function, which triggers access of a freed resource.
Remediation
References
Related Vulnerabilities
WordPress Plugin ZoomSounds-WordPress Wave Audio Player with Playlist Arbitrary File Upload (2.0)
Joomla Generation of Error Message Containing Sensitive Information Vulnerability (CVE-2018-11325)
WordPress Plugin Responsive Poll Multiple Vulnerabilities (1.7.4)
WordPress Plugin Advanced Booking Calendar Cross-Site Scripting (1.6.7)
WordPress Plugin CloudFlare Multiple Unspecified Vulnerabilities (1.1.6)