Description
Stack-based buffer overflow in the php_mysqlnd_auth_write function in the Mysqlnd extension in PHP 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) username or (2) database name argument to the (a) mysql_connect or (b) mysqli_connect function.
Remediation
References
Related Vulnerabilities
Roundcube Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2010-0464)
WordPress Plugin Profile Builder-User Profile & User Registration Forms Cross-Site Scripting (2.4.1)
Joomla CVE-2019-14654 Vulnerability (CVE-2019-14654)
WordPress Plugin FancyBox for WordPress Security Bypass (3.0.2)