NuytsTech Security

CVE-2010-3709

by ·

The ZipArchive::getArchiveComment function in PHP 5.2.x through 5.2.14 and 5.3.x through 5.3.3 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted ZIP archive.

Date published : 2010-11-08

http://lists.apple.com/archives/security-announce/2011/Mar/msg00006.html

http://www.securityfocus.com/bid/44718

Tags: