The preg_quote function in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to obtain sensitive information (memory contents) by causing a userspace interruption of an internal function, related to the call time pass by reference feature, modification of ZVALs whose values are not updated in the associated local variables, and access of previously-freed memory.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2010-05-12T00:00:00
Updated: 2024-08-07T02:17:14.339Z
Reserved: 2010-05-11T00:00:00
Link: CVE-2010-1915
Vulnrichment
No data.
NVD
Status : Modified
Published: 2010-05-12T11:46:40.297
Modified: 2017-08-17T01:32:32.227
Link: CVE-2010-1915
Redhat