Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's __sleep function to interrupt an internal call to the shm_put_var function, which triggers access of a freed resource.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
PHP sysvshm扩展件资源管理错误漏洞
Vulnerability Description
PHP(PHP:Hypertext Preprocessor,PHP:超文本预处理器)是PHP Group和开放源代码社区共同维护的一种开源的通用计算机脚本语言。该语言主要用于Web开发,支持多种数据库及操作系统。 PHP的sysvshm扩展件存在漏洞,上下文依赖的攻击者可以利用object's __sleep函数中断对shm_put_var函数的内部调用,从而在任意内存地址进行写操作,可访问被释放的资源。
CVSS Information
N/A
Vulnerability Type
N/A