Описание
Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
| Релиз | Статус | Примечание |
|---|---|---|
| devel | released | 5.6.4+dfsg-4ubuntu3 |
| esm-infra-legacy/trusty | not-affected | 5.5.9+dfsg-1ubuntu4.7 |
| lucid | released | 5.3.2-1ubuntu4.29 |
| precise | released | 5.3.10-1ubuntu3.17 |
| trusty | released | 5.5.9+dfsg-1ubuntu4.7 |
| trusty/esm | not-affected | 5.5.9+dfsg-1ubuntu4.7 |
| upstream | released | 5.6.6+dfsg-1 |
| utopic | released | 5.5.12+dfsg-2ubuntu4.3 |
Показывать по
7.5 High
CVSS2
Связанные уязвимости
Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
Heap-based buffer overflow in the enchant_broker_request_dict function ...
Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.
Уязвимость интерпретатора PHP, позволяющая удалённому злоумышленнику вызвать отказ в обслуживании или оказать иное воздействие на систему
7.5 High
CVSS2