Description
Integer overflow in the msg_receive function in PHP 4 before 4.4.5 and PHP 5 before 5.2.1, on FreeBSD and possibly other platforms, allows context-dependent attackers to execute arbitrary code via certain maxsize values, as demonstrated by 0xffffffff.
Remediation
References
Related Vulnerabilities
Oracle Database Server CVE-2021-35576 Vulnerability (CVE-2021-35576)
WordPress Plugin Spiffy Calendar Security Bypass (4.9.10)
WordPress Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2021-39200)
Jboss EAP Uncontrolled Resource Consumption Vulnerability (CVE-2016-8627)
SharePoint Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2019-1202)