Vulnerabilities

CVE-2004-1019

by Fred · 22/12/2004

The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function that may trigger "information disclosure, double-free and negative reference index array underflow" results.

Date published : 2004-12-22

http://marc.info/?l=bugtraq&m=110314318531298&w=2

http://www.oracle.com/technetwork/topics/security/bulletinjan2015-2370101.html

Similar

Tags: Cybersecurity Alert