Lucene search
MitreCVELIST:CVE-2010-1868HistoryMay 07, 2010 - 10:00 p.m.
CVE-2010-1868
2010-05-0722:00:00
mitre
www.cve.org
9
php
sqlite
vulnerability
uninitialized memory
code execution
The (1) sqlite_single_query and (2) sqlite_array_query functions in ext/sqlite/sqlite.c in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to execute arbitrary code by calling these functions with an empty SQL query, which triggers access of uninitialized memory.
References
php-security.org/2010/05/07/mops-2010-012-php-sqlite_single_query-uninitialized-memory-usage-vulnerability/index.html
php-security.org/2010/05/07/mops-2010-013-php-sqlite_array_query-uninitialized-memory-usage-vulnerability/index.html
php-security.org/2010/05/07/mops-submission-03-sqlite_single_query-sqlite_array_query-uninitialized-memory-usage/index.html
Related
ubuntucve
ubuntucve
CVE-2010-1868
2010-05-07 00:00:00
prion
prion
Code injection
2010-05-07 23:00:00
openvas
openvas
PHP 'sqlite_single_query()' and 'sqlite_array_query()' Arbitrary Code Execution Vulnerabilities
2010-05-10 00:00:00
Ubuntu: Security Advisory (USN-989-1)
2010-09-22 00:00:00
Ubuntu Update for php5 vulnerabilities USN-989-1
2010-09-22 00:00:00
cve
cve
CVE-2010-1868
2010-05-07 23:00:01
nvd
nvd
CVE-2010-1868
2010-05-07 23:00:01
securityvulns
securityvulns
PHP multiple security vulnerabilities
2010-05-11 00:00:00
[USN-989-1] PHP vulnerabilities
2010-09-27 00:00:00
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : php5 vulnerabilities (USN-989-1)
2010-09-21 00:00:00
GLSA-201110-06 : PHP: Multiple vulnerabilities
2011-10-12 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-09-20 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00