The zend_alter_ini_entry function in PHP before 5.2.4 does not properly handle an interruption to the flow of execution triggered by a memory_limit violation, which has unknown impact and attack vectors.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Php | Php | * | 5.2.3 (including) |