CVE-2012-2376
N/A
N/A
Summary
Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://isc.sans.edu/diary.html?storyid=13255
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75778
- http://www.exploit-db.com/exploits/18861/
- https://bugzilla.redhat.com/show_bug.cgi?id=823464
- http://openwall.com/lists/oss-security/2012/05/20/2
- http://www.securitytracker.com/id?1027089
References
- http://isc.sans.edu/diary.html?storyid=13255
- https://exchange.xforce.ibmcloud.com/vulnerabilities/75778
- http://www.exploit-db.com/exploits/18861/
- https://bugzilla.redhat.com/show_bug.cgi?id=823464
- http://openwall.com/lists/oss-security/2012/05/20/2
- http://www.securitytracker.com/id?1027089
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.