Description

Memory leak in the timezone functionality in PHP before 5.3.9 allows remote attackers to cause a denial of service (memory consumption) by triggering many strtotime function calls, which are not properly handled by the php_date_parse_tzfile cache.

Remediation

References

CVE-2012-0789

Related Vulnerabilities

WordPress Plugin Paid Membership, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content-ProfilePress Cross-Site Scripting (4.5.3)

TCExam Observable Differences in Behavior to Error Inputs Vulnerability (CVE-2021-20113)

Joomla Other Vulnerability (CVE-2023-23752)

WordPress Plugin Events Widgets For Elementor And The Events Calendar Security Bypass (1.4.3)

WordPress Plugin Booking.com Product Helper Unspecified Vulnerability (1.0.3)

Severity

Medium

Classification

CVE-2012-0789

Tags

Missing Update Known Vulnerabilities