CVE-2012-2329

N/A Unknown

Published: May 11, 2012 Modified: April 29, 2026

Description

Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/49014

Source: secalert@redhat.com

http://www.php.net/ChangeLog-5.php#5.4.3

Source: secalert@redhat.com

http://www.php.net/archive/2012.php#id2012-05-08-1

Source: secalert@redhat.com

http://www.securityfocus.com/bid/53455

Source: secalert@redhat.com

https://bugs.php.net/bug.php?id=61807

Source: secalert@redhat.com

https://bugzilla.redhat.com/show_bug.cgi?id=820000

Source: secalert@redhat.com

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/75545

Source: secalert@redhat.com

https://h20564.www2.hp.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c03839862

Source: secalert@redhat.com

http://secunia.com/advisories/49014