Description

PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper memory to be freed.

Remediation

References

CVE-2002-0717

Related Vulnerabilities

WordPress Plugin OdiHost Newsletter 'openstat.php' SQL Injection (1.0)

Joomla Other Vulnerability (CVE-2006-7009)

WordPress Plugin Kindeditor For WordPress Cross-Site Scripting (1.3.3)

Moodle Improper Input Validation Vulnerability (CVE-2011-4302)

Apache Traffic Server Improper Input Validation Vulnerability (CVE-2021-44040)

Severity

High

Classification

CVE-2002-0717

Tags

Missing Update Known Vulnerabilities