SOL12597 - PHP vulnerability CVE-2010-4156

2011-02-10T00:00:00
ID SOL12597
Type f5
Reporter f5
Modified 2013-07-03T00:00:00

Description

PHP vulnerability CVE-2010-4156 describes a vulnerability where the mb_strcut function in Libmbfl 1.1.0, as used in PHP 5.3.x through 5.3.3, allows context-dependent attackers to obtain potentially sensitive information via a large value of the third parameter (aka the length parameter).

Information about this advisory is available at the following location:

<http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-4156>