PHP 'SplObjectStorage' Unserializer Arbitrary Code Execution Vulnerability Network Vulnerability

Summary

PHP is prone to a vulnerability that an attacker could exploit to execute arbitrary code with the privileges of the user running the affected application. Successful exploits will compromise the application and possibly the computer.

References

http://www.php.net
https://bugzilla.redhat.com/show_bug.cgi?id=605641
https://www.securityfocus.com/bid/40948

Updated on 2015-03-25

Severity

Classification

CVE CVE-2010-2225

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Andy's PHP Knowledgebase 's' Parameter SQL Injection Vulnerability
Avenger's News System Command Execution
artmedic_links5 File Inclusion Vulnerability
AWCM CMS Multiple Remote File Include Vulnerabilities
Apache Tomcat AJP Protocol Security Bypass Vulnerability

Take action and discover your vulnerabilities