Description

The zend_alter_ini_entry function in PHP before 5.2.4 does not properly handle an interruption to the flow of execution triggered by a memory_limit violation, which has unknown impact and attack vectors.

Remediation

References

CVE-2007-4659

Related Vulnerabilities

phpMyAdmin Other Vulnerability (CVE-2004-0129)

WordPress Plugin Social Media Share Buttons & Social Sharing Icons Cross-Site Scripting (2.1.7)

WordPress Plugin Themify-WooCommerce Product Filter SQL Injection (1.4.9)

Oracle Database Server CVE-2023-22096 Vulnerability (CVE-2023-22096)

WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Multiple Vulnerabilities (4.0.3)

Severity

High

Classification

CVE-2007-4659

Tags

Missing Update Known Vulnerabilities