Description
Integer signedness error in emalloc() function for PHP before 4.3.2 allow remote attackers to cause a denial of service (memory consumption) and possibly execute arbitrary code via negative arguments to functions such as (1) socket_recv, (2) socket_recvfrom, and possibly other functions.
Remediation
References
Related Vulnerabilities
WordPress Plugin Wufoo Shortcode Cross-Site Scripting (1.51)
WordPress Plugin Xorbin Digital Flash Clock Cross-Site Scripting (1.0)
WordPress Plugin Sina Extension for Elementor Multiple Cross-Site Scripting Vulnerabilities (3.3.11)
WordPress Plugin GigPress Multiple Vulnerabilities (2.3.10)
WordPress Plugin Category and Page Icons Cross-Site Scripting (0.9.2)