Vulnerability & Exploit Database

Back to search

Oracle Solaris 11: CVE-2014-9705: Vulnerability in PHP

Severity CVSS Published Added Modified
8 (AV:N/AC:L/Au:N/C:P/I:P/A:P) March 29, 2015 May 28, 2017 January 07, 2018

Description

Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.

Free Nexpose Download

Discover, prioritize, and remediate security risks today!

 Download now

References

Solution

oracle-solaris-11-2-upgrade-web-php-52-5-2-17-0-175-2-12-0-4-0

Related Vulnerabilities