Description

PHP before 5.3.7 does not properly implement the error_log function, which allows context-dependent attackers to cause a denial of service (application crash) via unspecified vectors.

Remediation

References

CVE-2011-3267

Related Vulnerabilities

WordPress Plugin Post SMTP-WP SMTP with Email Logs & Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP, Office 365, Brevo, Mailgun, Amazon SES, Postmark Cross-Site Request Forgery (2.0.2)

WordPress Plugin Autoptimize Multiple Vulnerabilities (2.7.6)

WordPress Plugin WORDPRESS VIDEO GALLERY Multiple Vulnerabilities (2.3.1)

WordPress Plugin Advanced Custom Fields (ACF) Cross-Site Scripting (4.4.3)

Python CVE-2013-1753 Vulnerability (CVE-2013-1753)

Severity

Medium

Classification

CVE-2011-3267

Tags

Missing Update Known Vulnerabilities