Описание
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | not-affected | 5.1.2-1ubuntu3.18 |
| devel | not-affected | 5.3.3-1ubuntu6 |
| hardy | released | 5.2.4-2ubuntu5.12 |
| jaunty | released | 5.2.6.dfsg.1-3ubuntu4.6 |
| karmic | released | 5.2.10.dfsg.1-2ubuntu6.5 |
| lucid | released | 5.3.2-1ubuntu4.5 |
| upstream | released | 5.3.3 |
Показывать по
Ссылки на источники
EPSS
7.5 High
CVSS2
Связанные уязвимости
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.
Use-after-free vulnerability in the SplObjectStorage unserializer in P ...
Use-after-free vulnerability in the SplObjectStorage unserializer in PHP 5.2.x and 5.3.x through 5.3.2 allows remote attackers to execute arbitrary code or obtain sensitive information via serialized data, related to the PHP unserialize function.
EPSS
7.5 High
CVSS2