Heap-based buffer overflow in the php_parserr function in ext/standard/dns.c in PHP 5.6.0beta4 and earlier allows remote servers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted DNS TXT record, related to the dns_get_record function.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
History
No history.
Information
Published : 2014-06-18 19:55
Updated : 2024-02-28 12:20
NVD link : CVE-2014-4049
Mitre link : CVE-2014-4049
CVE.ORG link : CVE-2014-4049
JSON object : View
Products Affected
opensuse
- opensuse
php
- php
debian
- debian_linux
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer