Multiple buffer overflows in the (a) Session Clustering Daemon and the (b) mod_cluster module in the Zend Platform 2.2.1 and previous versions allow remote malicious users to cause a denial of service (crash) or execute arbitrary code via a (1) empty or (2) crafted PHP session identifier (PHPSESSID).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
zend zend platform |