CVE-2014-9705

2015-03-30T10:59:00
ID CVE-2014-9705
Type cve
Reporter cve@mitre.org
Modified 2018-01-05T02:29:00

Description

Heap-based buffer overflow in the enchant_broker_request_dict function in ext/enchant/enchant.c in PHP before 5.4.38, 5.5.x before 5.5.22, and 5.6.x before 5.6.6 allows remote attackers to execute arbitrary code via vectors that trigger creation of multiple dictionaries.