Description

Use-after-free vulnerability in the Zend engine in PHP before 5.2.15 and 5.3.x before 5.3.4 might allow context-dependent attackers to cause a denial of service (heap memory corruption) or have unspecified other impact via vectors related to use of __set, __get, __isset, and __unset methods on objects accessed by a reference.

Remediation

References

CVE-2010-4697

Related Vulnerabilities

WordPress Plugin Visual Composer:Page Builder for WordPress Multiple Cross-Site Scripting Vulnerabilities (4.7.3)

WordPress Other Vulnerability (CVE-2007-3238)

WordPress Permissions, Privileges, and Access Controls Vulnerability (CVE-2013-2199)

MediaWiki Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-31549)

Drupal Resource Management Errors Vulnerability (CVE-2013-0316)

Severity

Medium

Classification

CVE-2010-4697

Tags

Missing Update Known Vulnerabilities