PHP ZendEngine ECalloc Integer Overflow Vulnerability

PHP is prone to an integer-overflow vulnerability because the application fails to do proper bounds checking on user-supplied data.

An attacker can exploit this vulnerability to execute arbitrary code in the context of the affected application. Failed exploit attempts will likely cause denial-of-service conditions.


 

Privacy Statement
Copyright 2010, SecurityFocus