Description

The JSON_parser function (ext/json/JSON_parser.c) in PHP 5.2.x before 5.2.9 allows remote attackers to cause a denial of service (segmentation fault) via a malformed string to the json_decode API function.

Remediation

References

CVE-2009-1271

Related Vulnerabilities

Vanilla Forums Authorization Bypass Through User-Controlled Key Vulnerability (CVE-2018-15833)

Drupal Improper Input Validation Vulnerability (CVE-2022-24775)

Drupal Core 8.6.x Multiple Vulnerabilities (8.6.0 - 8.6.14)

MySQL CVE-2019-2607 Vulnerability (CVE-2019-2607)

Oracle Database Server CVE-2010-4423 Vulnerability (CVE-2010-4423)

Severity

Medium

Classification

CVE-2009-1271

Tags

Missing Update Known Vulnerabilities