Gentoo Linux: CVE-2012-2335: PHP: Multiple vulnerabilities
|8||(AV:N/AC:L/Au:N/C:P/I:P/A:P)||May 11, 2012||October 30, 2017||October 30, 2017|
php-wrapper.fcgi does not properly handle command-line arguments, which allows remote attackers to bypass a protection mechanism in PHP 5.3.12 and 5.4.2 and execute arbitrary code by leveraging improper interaction between the PHP sapi/cgi/cgi_main.c component and a query string beginning with a +- sequence.
Scan For This Vulnerability
Use our top-rated tool to discover, prioritize, and remediate your vulnerabilities