Vulnerability CVE-2009-2626

Vulnerability CVE-2009-2626

Published: 2009-12-01 Modified: 2012-02-13

Description:

	Topic	Author	Date
High	PHP 5.2.10/5.3.0 (zend_ini.c) Memory Disclosure	Maksymilian Arci...	08.08.2009
High	PHP 5.3.0/5.2.10 ini_restore() related memory information disclosure	Maksymilian Arci...	07.12.2009

Type:

CVSS Base Score	Impact Subscore	Exploitability Subscore
6.4/10	4.9/10	10/10

Affected software
PHP -> PHP

http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=540605

http://securityreason.com/achievement_securityalert/65

http://svn.php.net/viewvc/php/php-src/branches/PHP_5_3/Zend/zend_ini.c?r1=272370&r2=284156

http://www.debian.org/security/2009/dsa-1940

http://www.securityfocus.com/bid/36009