CVE-2010-1868

CVE-2010-1868 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The (1) sqlite_single_query and (2) sqlite_array_query functions in ext/sqlite/sqlite.c in PHP 5.2 through 5.2.13 and 5.3 through 5.3.2 allow context-dependent attackers to execute arbitrary code by calling these functions with an empty SQL query, which triggers access of uninitialized memory.

Learn more about our Cis Benchmark Audit For Microsoft Sql Server.