main/php_open_temporary_file.c in PHP prior to 5.5.28 and 5.6.x prior to 5.6.12 does not ensure thread safety, which allows remote malicious users to cause a denial of service (race condition and heap memory corruption) by leveraging an application that performs many temporary-file accesses.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
php php |