CVE-2008-1384

Name of the Vulnerable Software and Affected Versions PHP versions prior to 5.2.6

Description The issue is related to an integer overflow that allows context-dependent attackers to cause a denial of service and possibly have other unspecified impacts. This is achieved via a printf format parameter with a large width specifier. The problem is associated with the php sprintf appendstring function in formatted print.c and probably other functions for formatted strings, also known as *printf functions.

Recommendations For PHP versions prior to 5.2.6, update to a version 5.2.6 or later to resolve the issue.