Description

Algorithmic complexity vulnerability in the multipart_buffer_headers function in main/rfc1867.c in PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 allows remote attackers to cause a denial of service (CPU consumption) via crafted form data that triggers an improper order-of-growth outcome.

Remediation

References

CVE-2015-4024

Related Vulnerabilities

MySQL CVE-2022-21362 Vulnerability (CVE-2022-21362)

WordPress Other Vulnerability (CVE-2006-3389)

Squid Exposure of Resource to Wrong Sphere Vulnerability (CVE-2020-8449)

WordPress Plugin CMS Tree Page View Cross-Site Request Forgery (1.2.4)

WordPress Plugin Easy Media Download Cross-Site Scripting (1.1.6)

Severity

Medium

Classification

CVE-2015-4024

Tags

Missing Update Known Vulnerabilities