Description

Integer overflow in the NumberFormatter::getSymbol (aka numfmt_get_symbol) function in PHP 5.3.3 and earlier allows context-dependent attackers to cause a denial of service (application crash) via an invalid argument.

Remediation

References

CVE-2010-4409

Related Vulnerabilities

WordPress Other Vulnerability (CVE-2006-3389)

WordPress Plugin Author Chat Unspecified Vulnerability (1.9.0)

WordPress Plugin Post SMTP-WP SMTP with Email Logs & Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP, Office 365, Brevo, Mailgun, Amazon SES, Postmark Cross-Site Scripting (2.8.6)

Apache Tomcat Other Vulnerability (CVE-2011-1419)

phpMyAdmin Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') Vulnerability (CVE-2011-2508)

Severity

Medium

Classification

CVE-2010-4409

Tags

Missing Update Known Vulnerabilities