CVE-2006-7205

Name of the Vulnerable Software and Affected Versions PHP versions 4.4.2 and 5.1.2

Description The issue allows context-dependent attackers to cause a denial of service, specifically memory consumption, by exploiting the array fill function in the ext/standard/array.c file. This is achieved by using a large num value.

Recommendations For PHP version 4.4.2, update to a version that fixes this issue. For PHP version 5.1.2, update to a version that fixes this issue. As a temporary workaround, consider restricting the use of the array fill function with large num values to minimize the risk of exploitation.