Description

Stack consumption vulnerability in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to cause a denial of service (PHP crash) via a crafted first argument to the fnmatch function, as demonstrated using a long string.

Remediation

References

CVE-2010-1917

Related Vulnerabilities

phpMyFAQ Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2023-5863)

Roundcube Cross-site Scripting (XSS) Vulnerability (CVE-2015-1433)

axios Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2022-1214)

PostgreSQL Permissions, Privileges, and Access Controls Vulnerability (CVE-2012-3488)

Jboss EAP Deserialization of Untrusted Data Vulnerability (CVE-2015-7501)

Severity

Medium

Classification

CVE-2010-1917

Tags

Missing Update Known Vulnerabilities