Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.
Recent assessments:
wchen-r7 at September 12, 2019 6:07pm UTC reported:
ā
ā`
<http://www.php.net/ChangeLog-5.php#5.4.3>
Fixed bug #61807 Buffer Overflow in apache_request_headers, CVE-2012-2329. => Bug private at the moment of writing
<http://www.securityfocus.com/bid/53455>
Redhat, include patches:
<https://bugzilla.redhat.com/show_bug.cgi?id=820000>
Assessed Attacker Value: 0
Assessed Attacker Value: 0Assessed Attacker Value: 0