CVE-2011-3379

Name of the Vulnerable Software and Affected Versions PHP versions 5.3.7 through 5.3.8

Description The issue allows remote attackers to execute arbitrary code by providing a crafted URL. This is made possible by the is a function triggering a call to the autoload function, which can lead to potentially unsafe behavior in certain PEAR packages and custom autoloaders.

Recommendations For PHP versions 5.3.7 and 5.3.8, consider disabling the autoload function or restricting its use until a patch is available. Additionally, review and update any custom autoloaders to prevent potentially unsafe behavior.