Description
Integer overflow in the wordwrap function in string.c in PHP 4.4.2 and 5.1.2 might allow context-dependent attackers to execute arbitrary code via certain long arguments that cause a small buffer to be allocated, which triggers a heap-based buffer overflow in a memcpy function call, a different vulnerability than CVE-2002-1396.
Remediation
References
Related Vulnerabilities
Ruby on Rails Improper Authentication Vulnerability (CVE-2012-3424)
Plone CMS Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2012-5491)
WordPress Plugin WP Review Slider SQL Injection (12.1)
WebLogic CVE-2018-3191 Vulnerability (CVE-2018-3191)
WordPress Plugin Uploader Cross-Site Scripting and Arbitrary File Upload Vulnerabilities (1.0.4)