ID:4353 - Exploit for Buffer overflow in PHP - CVE-2012-2329
Published: August 11, 2020
Vulnerability identifier: #VU44085
Vulnerability risk: Medium
CVE-ID: CVE-2012-2329
CWE-ID: CWE-119
Exploitation vector: Remote access
Vulnerable software:
PHP
PHP
Link to public exploit:
Vulnerability description
The vulnerability allows a remote non-authenticated attacker to perform service disruption.
Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.
Remediation
Install update from vendor's website.