MOPS-2010-009: PHP shm_put_var() Already Freed Resource Access Vulnerability

MOPS-2010-009: PHP shmputvar Already Freed Resource Access Vulnerability May 5th, 2010 When PHP’s shmputvar function is interrupted by an object’s sleep function it can destroy the shm resource used by this function which allows to write an arbitrary memory address. Affected versions Affected is...

CVE-2010-1861

The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's sleep function to interrupt an internal call to the shmputvar function, which triggers access of a freed resource...

Design/Logic Flaw

The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's sleep function to interrupt an internal call to the shmputvar function, which triggers access of a freed resource...

CVE-2010-1861

The sysvshm extension for PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allows context-dependent attackers to write to arbitrary memory addresses by using an object's sleep function to interrupt an internal call to the shmputvar function, which triggers access of a freed resource...