The array_fill function in ext/standard/array.c in PHP 4.4.2 and 5.1.2 allows context-dependent malicious users to cause a denial of service (memory consumption) via a large num value.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php group php 4.4.2 |
||
php group php 5.1.2 |