Description

PHP 4.2.0 and 4.2.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via an HTTP POST request with certain arguments in a multipart/form-data form, which generates an error condition that is not properly handled and causes improper memory to be freed.

Remediation

References

CVE-2002-0717

Related Vulnerabilities

WordPress Plugin Conditional Payments for WooCommerce Cross-Site Request Forgery (2.3.1)

WordPress Improper Neutralization of Special Elements used in a Command ('Command Injection') Vulnerability (CVE-2016-10045)

Oracle Application Server CVE-2009-0996 Vulnerability (CVE-2009-0996)

WordPress Plugin Ninja Forms Contact Form-The Drag and Drop Form Builder for WordPress Multiple Vulnerabilities (3.4.33)

Joomla! Core 1.0.5 Security Bypass (1.0.5)

Severity

High

Classification

CVE-2002-0717

Tags

Missing Update Known Vulnerabilities