VYPR
Unrated severityNVD Advisory· Published Mar 20, 2011· Updated Jun 16, 2026

CVE-2011-1471

CVE-2011-1471

Description

Integer signedness error in zip_stream.c in the Zip extension in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (CPU consumption) via a malformed archive file that triggers errors in zip_fread function calls.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:php:php:*:*:*:*:*:*:*:*
    Range: <5.2.11
  • PHP/Zipllm-create
    Range: <5.3.6

Patches

Vulnerability mechanics

References

10

News mentions

0

No linked articles in our index yet.