Description
Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTTP POST request when file_uploads is enabled.
Remediation
References
Related Vulnerabilities
WordPress Plugin Image Photo Gallery Final Tiles Grid Security Bypass (3.3.52)
Moodle Incorrect Permission Assignment for Critical Resource Vulnerability (CVE-2012-1160)
WordPress Plugin BulletProof Security Information Disclosure (5.1)
Contao Improper Privilege Management Vulnerability (CVE-2021-37627)
WordPress Plugin Simple Download Monitor Cross-Site Scripting (3.9.10)