The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's __sleep function to interrupt an internal call to the shm_put_var function, which triggers access of a freed resource.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
No history.
Information
Published : 2010-05-07 23:00
Updated : 2010-05-10 04:00
NVD link : CVE-2010-1861
Mitre link : CVE-2010-1861
CVE.ORG link : CVE-2010-1861
JSON object : View
Products Affected
php
- php
CWE
CWE-399
Resource Management Errors