Back to search

ELSA-2012-0033 Moderate: Oracle Linux 5 php security update

Severity CVSS Published Added Modified
8 (AV:N/AC:L/Au:N/C:P/I:P/A:P) March 18, 2011 January 25, 2012 December 05, 2013

Available Exploits 

Description

Use-after-free vulnerability in the substr_replace function in PHP 5.3.6 and earlier allows context-dependent attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact by using the same variable for multiple arguments.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

Related Vulnerabilities