Vulnerabilities

CVE-2011-3379

by Fred · 03/11/2011

The is_a function in PHP 5.3.7 and 5.3.8 triggers a call to the __autoload function, which makes it easier for remote attackers to execute arbitrary code by providing a crafted URL and leveraging potentially unsafe behavior in certain PEAR packages and custom autoloaders.

Date published : 2011-11-03

http://www.securityfocus.com/archive/1/519770/30/0/threaded

http://svn.php.net/viewvc/?view=revision&revision=317183

Similar

Tags: Cybersecurity Alert