Remote Code Execution Vulnerability in PHP 5.4.3 and Earlier on Windows

Remote Code Execution Vulnerability in PHP 5.4.3 and Earlier on Windows

CVE-2012-2376 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Buffer overflow in the com_print_typeinfo function in PHP 5.4.3 and earlier on Windows allows remote attackers to execute arbitrary code via crafted arguments that trigger incorrect handling of COM object VARIANT types, as exploited in the wild in May 2012.

Learn more about our Web Application Penetration Testing UK.