CVE-2007-1286

Integer overflow in PHP 4.4.4 and earlier allows remote context-dependent attackers to execute arbitrary code via a long string to the unserialize function, which triggers the overflow in the ZVAL reference counter.

Date published : 2007-03-06

http://www.securityfocus.com/bid/22765

http://www.securityfocus.com/archive/1/466166/100/0/threaded