CVE-2013-7034 Information

Description

The setCookieValue function in _lib/functions.global.inc.php in LiveZilla before 5.1.2.1 allows remote attackers to execute arbitrary PHP code via a serialized PHP object in a cookie.

Reference

http://archives.neohapsis.com/archives/bugtraq/2013-12/0078.html http://forums.livezilla.net/index.php?/topic/163-livezilla-changelog/ http://www.securityfocus.com/bid/64383 https://exchange.xforce.ibmcloud.com/vulnerabilities/89796